# kukukoinlogin.webflow.io — MALICIOUS

> kukukoinlogin.webflow.io poses a medium risk for credential phishing. Stay alert and protect your info by avoiding this suspicious domain.

## Summary
PhishDestroy identifies kukukoinlogin.webflow.io as an active credential phishing domain with a medium risk level. This classification indicates a significant threat to user credentials, potentially leading to unauthorized access and data compromise.

Supporting intelligence reveals that the domain resolves to IP address 172.64.151.8 and is flagged by 6 out of 95 security vendors on VirusTotal, reinforcing its suspicious nature. The use of the Webflow hosting platform might be an attempt to lend legitimacy and bypass basic filters, a tactic observed in phishing campaigns. These indicators align with common infrastructure patterns in credential harvesting operations.

Users are advised to exercise caution and avoid interacting with this domain. PhishDestroy recommends implementing robust email filtering and endpoint protection measures to mitigate exposure. The domain remains active, underscoring the need for continued vigilance and timely threat intelligence updates to protect sensitive information from compromise.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 0)
- Page title: KuCōin® - Sign i𝒏 | Login

## Domain Intelligence
- Registered: 2026-03-06 13:07:01
- Registrar: MarkMonitor, Inc.
- Country: US
- IP: 172.64.151.8
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: NS_NOT_FOUND
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 16 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "CyRadar", "Emsisoft", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Gridinsoft", "Kaspersky", "Lionic", "MalwareURL", "Netcraft", "OpenPhish", "Sophos", "Trustwave", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cc31e-97fe-7055-89b7-b63bc6bf5a50.png
- Cloudflare Radar: https://radar.cloudflare.com/domains/kukukoinlogin.webflow.io
- Wayback Machine: https://web.archive.org/web/https://kukukoinlogin.webflow.io
- PhishDestroy: https://phishdestroy.io/domain/kukukoinlogin.webflow.io/
- LLM endpoint: https://phishdestroy.io/domain/kukukoinlogin.webflow.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/kukukoinlogin.webflow.io/
Last updated: 2026-03-19