# gro68v-cryptoslate.com — SUSPICIOUS > PhishDestroy flags gro68v-cryptoslate.com as a crypto drainer phishing domain with 0/95 VirusTotal detections. Block now to protect crypto assets. ## Summary PhishDestroy identifies gro68v-cryptoslate.com as an active crypto drainer domain under investigation, posing a direct threat to cryptocurrency users. This domain mimics legitimate crypto platforms to trick victims into connecting wallets or entering seed phrases, enabling immediate asset theft. The high-risk classification is supported by its fresh creation date, low detection score, and association with a newly registered domain (NRD) known for malicious crypto campaigns. This domain was flagged with a risk level of under_investigation following analysis by PhishDestroy, exhibiting clear indicators of crypto drainer activity. VirusTotal currently reports 0 detections out of 95 security engines as of seed 260d0f. The domain was registered through NameSilo, LLC and resolves to IP 159.100.6.19. Analysis shows the domain was created on April 03, 2026, a timeframe consistent with rapid NRD-based campaign deployment. No current listings on major blocklists (e.g., Google Safe Browsing, OpenPhish, PhishTank) are observed, though this is expected given its recent emergence and low detection profile. Trust and reputation scores from threat intelligence platforms remain critically low due to the absence of historical legitimacy. To mitigate exposure to gro68v-cryptoslate.com, cryptocurrency users and platform operators should immediately block the domain at the network and endpoint levels. Enable wallet-level protections such as transaction simulation tools and hardware wallet confirmations for all smart contract interactions. Organizations should update DNS and firewall rules to block IP 159.100.6.19 and monitor DNS logs for resolution attempts. Users are advised to verify URLs manually, avoid clicking unsolicited links in crypto-related communications, and never enter seed phrases or private keys outside of trusted, air-gapped environments. Report any interactions with this domain to PhishDestroy and relevant crypto security forums to aid in rapid takedown efforts. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-04-03 05:43:10 - Registrar: NameSilo, LLC - IP: 159.100.6.19 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/gro68v-cryptoslate.com - PhishDestroy: https://phishdestroy.io/domain/gro68v-cryptoslate.com/ - LLM endpoint: https://phishdestroy.io/domain/gro68v-cryptoslate.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/gro68v-cryptoslate.com/ Last updated: 2026-04-04