# kucoin-logino.gitbook.io — MALICIOUS

> kucoin-logino.gitbook.io is flagged for credential phishing activity. Protect your accounts by avoiding this site. Stay vigilant and report suspicious domains.

## Summary
PhishDestroy identifies kucoin-logino.gitbook.io as a medium-risk credential phishing domain targeting users attempting to access KuCoin services. This domain aims to harvest sensitive login information under false pretenses.

The domain resolves to IP 172.64.147.209 and is registered via Cloudflare, Inc. Although created in 2014, it recently exhibited suspicious activity with 6 out of 95 VirusTotal security vendors flagging it. The domain uses GitBook infrastructure, which can lend it an appearance of legitimacy.

Currently active, kucoin-logino.gitbook.io poses a moderate threat. Users are advised to avoid interacting with this domain and verify URLs carefully. Organizations should monitor network traffic and employ threat intelligence to block access and mitigate potential credential theft risks.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 200)
- Target brand: KuCoin
- Page title: KÚCÔIN LÔGIN | BITCÔIN

## Domain Intelligence
- Registered: 2014-03-30 06:09:09
- Registrar: Cloudflare, Inc
- IP: 172.64.147.209
- Nameservers: dahlia.ns.cloudflare.com hugh.ns.cloudflare.com

## Detection Status
- VirusTotal: 16 vendors flagged
  Vendors: ["ADMINUSLabs", "BitDefender", "CyRadar", "DNS8", "ESET", "Emsisoft", "G-Data", "Kaspersky", "Lionic", "MalwareURL", "Netcraft", "Sophos", "Trustwave", "VIPRE", "Webroot", "alphaMountain.ai"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Live Page Content
- Meta title: KÚCÔIN LÔGIN | BITCÔIN &amp; CRYPTÔ

### Page Text
KÚCÔIN LÔGIN | BITCÔIN & CRYPTÔ KÚCÔIN LÔGIN | BITCÔIN & CRYPTÔ ⌘ Ctrl k KÚCÔIN LÔGIN | BITCÔIN & CRYPTÔ KÚCÔIN LÔGIN | BITCÔIN & CRYPTÔ Powered by GitBook On this page Copy KÚCÔIN LÔGIN | BITCÔIN & CRYPTÔ

### External Scripts
- https://static-2c.gitbook.com/_next/static/chunks/87c73c54-095cf9a90cf9ee03.js?dpl=6c613d0df35a4381e557621982faeeb0f25a5884
- https://static-2c.gitbook.com/_next/static/chunks/21902-071d67c25a3198c5.js?dpl=6c613d0df35a4381e557621982faeeb0f25a5884
- https://static-2c.gitbook.com/_next/static/chunks/main-app-95dfd8d3dd2e941a.js?dpl=6c613d0df35a4381e557621982faeeb0f25a5884
- https://static-2c.gitbook.com/_next/static/chunks/app/global-error-8fffda4f93bd8922.js?dpl=6c613d0df35a4381e557621982faeeb0f25a5884
- https://static-2c.gitbook.com/_next/static/chunks/f5718501-8545f65f56dd58ef.js?dpl=6c613d0df35a4381e557621982faeeb0f25a5884
- https://static-2c.gitbook.com/_next/static/chunks/9071f66d-6845f9ef16b3a69b.js?dpl=6c613d0df35a4381e557621982faeeb0f25a5884
- https://static-2c.gitbook.com/_next/static/chunks/28728-db690aa75c5b02e4.js?dpl=6c613d0df35a4381e557621982faeeb0f25a5884
- https://static-2c.gitbook.com/_next/static/chunks/30290-582ca1f5a0cb4ca8.js?dpl=6c613d0df35a4381e557621982faeeb0f25a5884
- https://static-2c.gitbook.com/_next/static/chunks/59290-abc179ef89159efb.js?dpl=6c613d0df35a4381e557621982faeeb0f25a5884
- https://static-2c.gitbook.com/_next/static/chunks/32172-ef933005f6ef589b.js?dpl=6c613d0df35a4381e557621982faeeb0f25a5884

### External Links
- https://gitbook.com/docs/published-documentation/custom-domain/configure-dns#are-you-using-cloudflare
- https://www.gitbook.com/?utm_source=content&amp;utm_medium=trademark&amp;utm_campaign=ii0BryT3FDueCgqd5xXC

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cc850-d176-7718-abf3-0a2f6ed9bb31.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/147b72ce-04a0-45bd-bcf9-978271fbb755
- PhishDestroy: https://phishdestroy.io/domain/kucoin-logino.gitbook.io/

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/kucoin-logino.gitbook.io/
Last updated: 2026-03-14