# linkprotocol.net — MALICIOUS

> linkprotocol.net is a verified crypto drainer impersonating Sei platform. 5/95 VirusTotal vendors flag this active domain registered June 11, 2024.

## Summary
PhishDestroy identifies linkprotocol.net as an active crypto-drainer domain that impersonates the Sei blockchain platform. The site poses a direct risk to cryptocurrency users by attempting to trick visitors into connecting wallets or entering seed phrases under the guise of Sei-branded services. Analysis shows the domain resolves to 172.67.190.233 and currently carries an SSL certificate issued by Google Trust Services, which may lend an initial false sense of legitimacy to unsuspecting users.  This domain was flagged by 5 out of 95 VirusTotal security vendors, a strong early-warning indicator of malicious intent. Registrar records indicate it was created on June 11, 2024, and is managed through NICENIC INTERNATIONAL GROUP CO., LIMITED. These technical indicators—combined with the site’s impersonation of Sei, a legitimate Layer-1 blockchain protocol—suggest an elevated risk of financial theft, wallet draining, or credential harvesting.  If you have visited linkprotocol.net or interacted with any wallet prompts on the site, disconnect immediately and revoke any wallet connections through your wallet’s interface. Do not enter your seed phrase or private keys. Run a full antivirus scan and check your transaction history for unauthorized transfers. Report the domain to PhishDestroy and any relevant blockchain security teams to help protect others from falling victim to this crypto-drainer.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)
- Target brand: Sei

## Domain Intelligence
- Registered: 2024-06-11 05:12:17
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- IP: 172.67.190.233

## Detection Status
- VirusTotal: 5 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/0c9865bb-0f01-4b38-b222-3f4ac7c6c6cb
- PhishDestroy: https://phishdestroy.io/domain/linkprotocol.net/
- LLM endpoint: https://phishdestroy.io/domain/linkprotocol.net/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/linkprotocol.net/
Last updated: 2026-03-27