# login-coinsquare.webflow.io — MALICIOUS

> login-coinsquare.webflow.io is a high-risk phishing site aiming to steal credentials. Avoid entering details and verify URLs before logging in.

## Summary
PhishDestroy identifies login-coinsquare.webflow.io as a high-risk credential phishing domain designed to deceive users into submitting sensitive login information. Credential phishing poses significant threats by enabling attackers to gain unauthorized access to accounts, potentially leading to financial loss and identity theft. Users should be aware that this domain mimics legitimate services to trick victims.

This domain resolves to the IP address 104.18.36.248 and has been flagged by 16 out of 95 security vendors on VirusTotal, indicating a notable consensus about its malicious intent. The use of a Webflow subdomain suggests it leverages legitimate hosting platforms to appear trustworthy while conducting phishing activities. Such infrastructure can complicate detection and takedown efforts.

Users are strongly advised to refrain from entering any personal or login credentials on login-coinsquare.webflow.io. Always verify the authenticity of URLs before submitting sensitive data and use multi-factor authentication where possible. If you suspect you have interacted with this site, immediately change your passwords and monitor your accounts for suspicious activity. Reporting this domain to your security team or a trusted authority can help mitigate further risks.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 403)

## Domain Intelligence
- IP: 104.18.36.248
- Nameservers: NS_NOT_FOUND

## Detection Status
- VirusTotal: 16 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "CyRadar", "ESET", "Emsisoft", "Forcepoint ThreatSeeker", "Fortinet", "Gridinsoft", "Kaspersky", "LevelBlue", "Lionic", "MalwareURL", "Netcraft", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cf922-bdfb-7509-9cb6-b3c8d77bc0b5.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/efd3bd3c-bcfd-4e3b-93b7-8335f377f2ed
- PhishDestroy: https://phishdestroy.io/domain/login-coinsquare.webflow.io/
- LLM endpoint: https://phishdestroy.io/domain/login-coinsquare.webflow.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/login-coinsquare.webflow.io/
Last updated: 2026-03-19