# kucoinelogin.webflow.io — MALICIOUS

> PhishDestroy identifies kucoinelogin.webflow.io as a KuCoin impersonation site that 11/95 VirusTotal scanners flagged. Review the full report.

## Summary
This domain, kucoinelogin.webflow.io, masquerades as the legitimate KuCoin cryptocurrency exchange to harvest login credentials. Victims who land here are prompted to enter their KuCoin username and password, risking direct theft of funds once credentials are captured by the attackers.

PhishDestroy’s analysis confirms this deception: VirusTotal’s 11/95 detection ratio includes blocklists that recognize brand-abuse patterns, while the site’s hostname is only weeks old and resolves to IP 172.64.151.8 via Cloudflare. Google Trust Services issued the SSL certificate, a common tactic to lull visitors into a false sense of security.

If you visited kucoinelogin.webflow.io, immediately change your KuCoin password and any reused passwords, enable two-factor authentication on your real KuCoin account, and scan your device with updated anti-malware tools. Report the domain to KuCoin’s abuse team and your organization’s security desk for takedown assistance and potential blocklisting.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)
- Target brand: KuCoin

## Domain Intelligence
- Registrar: REGISTRAR_NOT_FOUND
- IP: 172.64.151.8

## Detection Status
- VirusTotal: 11 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/cc6bd84b-a7d2-4cfb-a444-8fdd7360ea35
- PhishDestroy: https://phishdestroy.io/domain/kucoinelogin.webflow.io/
- LLM endpoint: https://phishdestroy.io/domain/kucoinelogin.webflow.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/kucoinelogin.webflow.io/
Last updated: 2026-03-29