# latest-info.webflow.io — MALICIOUS > latest-info.webflow.io is a confirmed crypto drainer phishing domain with 19/95 VirusTotal detections. Avoid this impersonation trap—verify URLs before clicking. ## Summary PhishDestroy identifies latest-info.webflow.io as a high-risk crypto drainer phishing domain actively targeting users with deceptive credential theft schemes. This domain masquerades as legitimate web infrastructure to trick victims into surrendering sensitive wallet credentials and private keys, enabling immediate asset exfiltration. Unlike generic phishing pages, this campaign specifically automates fund drains upon login, making it a severe threat to cryptocurrency holders who enter their credentials on the spoofed interface. The infrastructure is designed to mimic professional web services, leveraging trusted domains like webflow.io to bypass initial user suspicion and increase click-through rates. This domain was flagged by 19 out of 95 VirusTotal security vendors and is blocked by Google Safe Browsing as a confirmed phishing page. It resolves to IP address 172.64.151.8, hosted on Cloudflare infrastructure. The domain was recently registered and exhibits minimal trust indicators, with no established domain reputation and low trust scores across multiple threat intelligence platforms. Its reliance on a compromised or fraudulent webflow.io subdomain further illustrates the attackers’ tactic of abusing legitimate service providers to host malicious content, reducing the likelihood of early detection by traditional network defenses. To mitigate exposure to this crypto drainer, users must verify destination URLs before entering any credentials or connecting wallet extensions. Never click links in unsolicited messages or advertisements, especially those claiming urgent account actions. Enable hardware wallet signing for all transactions and use browser extensions that flag known malicious domains. Organizations should deploy DNS filtering with real-time threat intelligence feeds and block access to the IP range 172.64.0.0/16 where applicable. Report this domain to your security team and wallet provider if encountered. Stay vigilant—always cross-check domains against official sources before interaction. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: REGISTRAR_NOT_FOUND - IP: 172.64.151.8 ## Detection Status - VirusTotal: 19 vendors flagged - Google Safe Browsing: FLAGGED - Blocklists: 0 hits ## Evidence - PhishDestroy: https://phishdestroy.io/domain/latest-info.webflow.io/ - LLM endpoint: https://phishdestroy.io/domain/latest-info.webflow.io/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/latest-info.webflow.io/ Last updated: 2026-03-26