# kucoinneilginus.webflow.io — MALICIOUS

> Stay safe from phishing threats at kucoinneilginus.webflow.io. Avoid sharing personal info and report suspicious activity immediately.

## Summary
PhishDestroy identifies kucoinneilginus.webflow.io as a high-risk phishing domain designed to deceive users into divulging sensitive information. This fraudulent site mimics legitimate platforms to trick visitors, posing significant security risks such as identity theft and financial loss. Users are advised to exercise extreme caution when encountering this domain.

The domain resolves to the IP address 104.18.36.248 and is hosted on a Webflow infrastructure, which is often used to rapidly deploy spoofed websites. VirusTotal analysis reveals that 14 out of 95 security vendors have flagged this domain, confirming its malicious intent. The domain's setup and hosting environment suggest it is part of a broader phishing campaign exploiting trusted web services to evade detection.

Currently, kucoinneilginus.webflow.io remains active and continues to pose a threat to unsuspecting users. PhishDestroy recommends avoiding any interaction with this site, refraining from entering personal or financial details, and reporting the domain to relevant cybersecurity authorities. Users should also ensure their security software is up to date and remain vigilant against phishing attempts leveraging similar tactics.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 200)
- Target brand: KuCoin
- Page title: Kucoin &amp; Login: Accessing Your Kucoin Account - Webflow

## Domain Intelligence
- Registrar: REGISTRAR_NOT_FOUND
- IP: 104.18.36.248
- Nameservers: NS_NOT_FOUND

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Emsisoft", "Fortinet", "G-Data", "Kaspersky", "LevelBlue", "Lionic", "Netcraft", "Sophos", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Screenshot: https://urlscan.io/screenshots/019d00db-70c9-73ce-bfae-9852f3107bce.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/c312f84b-d233-4baa-8d13-4dc878d81379
- PhishDestroy: https://phishdestroy.io/domain/kucoinneilginus.webflow.io/
- LLM endpoint: https://phishdestroy.io/domain/kucoinneilginus.webflow.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/kucoinneilginus.webflow.io/
Last updated: 2026-03-19