# invariantprotocol.com — SUSPICIOUS

> Invariantprotocol.com mimics Base brand. Active domain flagged on blocklists. Exercise caution and verify before engagement.

## Summary
PhishDestroy identifies invariantprotocol.com as a low-risk brand impersonation domain targeting Base. The page title 'Invariant | Hardware-Based Identity Protocol' attempts to lend legitimacy.

Technical details reveal the domain resolves to IP 98.84.224.111 and was registered via NameCheap, Inc. Created on March 11, 2026, it appears on three security blocklists and is flagged by one VirusTotal vendor. These indicators suggest some malicious intent despite low detection rates.

Currently active, invariantprotocol.com requires monitoring and cautionary action. Users should avoid interaction and organizations should consider blocking to prevent potential phishing or spoofing attempts.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: alive (HTTP 200)
- Page title: Invariant | Hardware-Based Identity Protocol

## Domain Intelligence
- Registered: 2026-03-11 17:07:02
- Registrar: NameCheap, Inc.
- Country: US
- IP: 98.84.224.111
- IP Country: US
- IP City: Ashburn
- IP Org: AS14618 Amazon.com, Inc.
- Nameservers: ["dns1.p02.nsone.net", "dns2.p02.nsone.net"]
- SSL Issuer: Let's Encrypt / E8

## Detection Status
- VirusTotal: 1 vendors flagged
  Vendors: ["SOCRadar"]
- Google Safe Browsing: clean
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ce648-4c5b-7739-8568-c08d630e18e5.png
- PhishDestroy: https://phishdestroy.io/domain/invariantprotocol.com/
- LLM endpoint: https://phishdestroy.io/domain/invariantprotocol.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/invariantprotocol.com/
Last updated: 2026-03-19