# kuucoinlogind.webflow.io — MALICIOUS > kuucoinlogind.webflow.io is an active crypto credential phishing site flagged by 14 of 95 VirusTotal vendors. Check the full report. ## Summary PhishDestroy identifies kuucoinlogind.webflow.io as an active credential phishing domain impersonating KuCoin’s login portal. The site is currently operational and poses an elevated risk to users who may unknowingly input their credentials, which would be harvested by threat actors. This domain leverages a deceptive Webflow.io subdomain to mimic a legitimate service, exploiting user trust in established web platforms. This domain was flagged by 14 of 95 VirusTotal security vendors, indicating a significant detection rate among industry-standard tools. The domain resolves to IP address 172.64.151.8 and utilizes a Google Trust Services SSL certificate to appear legitimate. Historical records suggest this domain was created recently, though the exact creation date is not publicly available. The site has not yet been widely blocklisted, and its trust scores remain low due to the high-risk nature of its activity. The combination of a trusted hosting platform (Webflow.io), a fraudulent subdomain structure, and a valid SSL certificate creates a convincing facade designed to deceive users. KuCoin users and cryptocurrency investors are strongly advised to avoid interacting with kuucoinlogind.webflow.io or any similar domains that impersonate legitimate exchanges. Users should verify the authenticity of login portals by checking the domain URL in their browser and ensuring it matches KuCoin’s official website (kucoin.com). Additionally, enabling two-factor authentication (2FA) on cryptocurrency exchange accounts can provide an extra layer of security. Security researchers and end-users are encouraged to report this domain to threat intelligence platforms and block it at the network level to prevent further access. Immediate action is recommended to mitigate the risk of credential theft and potential financial loss. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: REGISTRAR_NOT_FOUND - IP: 172.64.151.8 ## Detection Status - VirusTotal: 14 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/dcc4a3b7-fcc8-4fef-87cd-b5d3e53b0fd8 - PhishDestroy: https://phishdestroy.io/domain/kuucoinlogind.webflow.io/ - LLM endpoint: https://phishdestroy.io/domain/kuucoinlogind.webflow.io/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/kuucoinlogind.webflow.io/ Last updated: 2026-03-28