# kuaocaooinlogin.webflow.io — MALICIOUS

> PhishDestroy identifies kuaocaooinlogin.webflow.io as a credential theft domain impersonating login portals. VirusTotal flags it with 20/95 detections.

## Summary
This domain presents an elevated risk as a credential theft phishing page. PhishDestroy flags kuaocaooinlogin.webflow.io with 20/95 VirusTotal detections, resolving to IP 104.18.36.248 via Google Trust Services. The domain shows active impersonation of login flows.


Mitigation for credential theft involves avoiding input fields on suspicious pages. Users should verify domains via official sources or blocklists. Blocking IP 104.18.36.248 at network/firewall levels adds protection.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: REGISTRAR_NOT_FOUND
- IP: 104.18.36.248

## Detection Status
- VirusTotal: 20 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/522f4b92-7460-44b5-aa2a-40e186d5241d
- PhishDestroy: https://phishdestroy.io/domain/kuaocaooinlogin.webflow.io/
- LLM endpoint: https://phishdestroy.io/domain/kuaocaooinlogin.webflow.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/kuaocaooinlogin.webflow.io/
Last updated: 2026-03-21