# learn-coinbse-com-cdn.framer.ai — SUSPICIOUS

> PhishDestroy identifies learn-coinbse-com-cdn.framer.ai as a crypto wallet phishing domain with 2/95 flagged on VirusTotal. Check the full report.

## Summary
PhishDestroy identifies learn-coinbse-com-cdn.framer.ai as posing an elevated risk due to active crypto wallet phishing activity, not just generic phishing. This domain mimics legitimate cryptocurrency services to deceive users into revealing wallet credentials or downloading malicious software. The presence of a Let's Encrypt SSL certificate suggests an attempt to appear trustworthy, but the low security vendor detection rate (2/95 on VirusTotal) indicates weak legitimacy.  

This domain resolves to IP address 31.43.160.6, which is associated with known suspicious infrastructure. The SSL certificate issued by Let's Encrypt provides no guarantee of legitimacy, as threat actors frequently exploit free certificates to enhance phishing credibility. Despite using a legitimate service (Framer), the subdomain learn-coinbse-com-cdn is clearly designed to mislead users expecting Coinbase services, highlighting a deliberate impersonation tactic. Additional data points include the domain being actively flagged by only 2 out of 95 security vendors on VirusTotal, suggesting a targeted or newly emerged threat that evades broad detection.  

To mitigate risks associated with this crypto wallet phishing domain, users should avoid interacting with the site entirely. If credentials were entered, immediately rotate wallet passwords and enable two-factor authentication where possible. Organizations can block the IP address 31.43.160.6 at the firewall level, and security teams should monitor for related domains mimicking Coinbase or other cryptocurrency platforms. Users should verify website URLs carefully and use bookmarks for official services rather than relying on search results or links. Always cross-check domains against known legitimate sources before entering sensitive information.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: REGISTRAR_NOT_FOUND
- IP: 31.43.160.6

## Detection Status
- VirusTotal: 2 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/30a40a56-df23-477b-974c-be2580d2e90d
- PhishDestroy: https://phishdestroy.io/domain/learn-coinbse-com-cdn.framer.ai/
- LLM endpoint: https://phishdestroy.io/domain/learn-coinbse-com-cdn.framer.ai/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/learn-coinbse-com-cdn.framer.ai/
Last updated: 2026-04-11