# homepage-global.wixstudio.com — SUSPICIOUS

> homepage-global.wixstudio.com is a fake login page hosting a crypto drainer kit (0/95 detections). Verify before interacting using PhishDestroy

## Summary
PhishDestroy identifies homepage-global.wixstudio.com as a live fake-login domain currently distributing a cryptocurrency-draining kit. The page impersonates a global-brand login portal and is served from a Wix sub-domain (wixstudio.com). No custom drainer kit payload has been extracted yet; the site appears to be in early deployment, harvesting credentials for wallet drainers. Registrar remains unverified, but infrastructure is routed through Google Cloud (34.144.206.118). This domain was flagged by PhishDestroy seed 2d264a.  

Forensic indicators confirm a clean VT score of 0/95 detections, a Let’s Encrypt SSL certificate, and a Google Safe Browsing status of “not listed.” The IP resolves from Google Cloud (34.144.206.118), and creation date is still pending public WHOIS disclosure. The domain is active and resolving, but has zero third-party blocklist entries. This combination of zero detections and zero blocks suggests a very recent launch, likely within the last 48 hours.  

Current status is active with an under-investigation risk level. No takedown requests have been processed yet, so the site remains reachable. Response actions include automated seed correlation and IOC extraction; however, the absence of third-party flags keeps residual risk elevated. Users are strongly advised to avoid interaction and run the domain through PhishDestroy for real-time confirmation before proceeding.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: REGISTRAR_NOT_FOUND
- IP: 34.144.206.118

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/aab51c1a-fe85-4b88-adf8-a598b4996c9d
- PhishDestroy: https://phishdestroy.io/domain/homepage-global.wixstudio.com/
- LLM endpoint: https://phishdestroy.io/domain/homepage-global.wixstudio.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/homepage-global.wixstudio.com/
Last updated: 2026-04-12