# must-blockfi.webflow.io — MALICIOUS

> Avoid must-blockfi.webflow.io, an active high-risk phishing site. Do not enter personal info. Block access to stay safe from scams.

## Summary
PhishDestroy identifies must-blockfi.webflow.io as a high-risk phishing domain actively used to deceive users. The domain name mimics trusted financial services, aiming to trick victims into divulging sensitive information such as login credentials or personal data. This widespread tactic leverages generic phishing techniques to maximize victim reach.

Technical analysis shows the domain resolves to IP address 172.64.151.8, which is currently active and hosting the malicious content. VirusTotal flags this domain by 15 out of 95 security vendors, confirming its malicious nature. The domain is hosted on the Webflow.io platform, commonly exploited for rapid phishing site deployment because of its ease of use and reputable hosting, which can sometimes evade initial suspicion.

At present, must-blockfi.webflow.io remains operational and poses an immediate threat to users. PhishDestroy strongly recommends blocking access to this domain across networks and devices. Users should avoid clicking any links or submitting information on this site. Security teams are advised to add this domain to their blocklists and monitor for related phishing campaigns exploiting similar naming conventions.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 200)
- Page title: BlockFi login

## Domain Intelligence
- Registered: 2026-03-04 15:07:01
- Registrar: REGISTRAR_NOT_FOUND
- IP: 172.64.151.8
- Nameservers: NS_NOT_FOUND

## Detection Status
- VirusTotal: 17 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Emsisoft", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Kaspersky", "Lionic", "Netcraft", "OpenPhish", "Sophos", "Trustwave", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Live Page Content
- Meta description: BlockFi login. BlockFi will never ask you to provide sensitive information via email or other unsecured channels. Use secure networks: Avoid logging into your BlockFi account on …

### Page Text
BlockFi login

### External Scripts
- https://d3e54v103j8qbb.cloudfront.net/js/jquery-3.5.1.min.dc5e7f18c8.js?site=65fe480ba73e00babc5a912c
- https://assets-global.website-files.com/65fe480ba73e00babc5a912c/js/webflow.4e8135d87.js

## Evidence
- Screenshot: https://i.ibb.co/Jj34pXd0/541b2b79b5d5.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/82230701-c87b-4832-a529-aadf561b9585
- PhishDestroy: https://phishdestroy.io/domain/must-blockfi.webflow.io/

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/must-blockfi.webflow.io/
Last updated: 2026-03-14