# ndaxexchnge-en.tem3.io — MALICIOUS

> ndaxexchnge-en.tem3.io is a live crypto credential theft phishing page flagged by 21/95 VirusTotal vendors. Avoid entering sensitive data. Report immediately.

## Summary
PhishDestroy identifies ndaxexchnge-en.tem3.io as a high-risk crypto credential theft domain actively impersonating a legitimate exchange. The phishing page solicits wallet credentials or private keys under the guise of a login portal, redirecting unsuspecting users to crypto drainer scripts. This domain poses an immediate threat to cryptocurrency holders and should be treated as hostile.

This domain was flagged by 21 out of 95 VirusTotal security vendors, with Google Safe Browsing explicitly classifying it as a phishing resource. The domain resolves to IP 188.114.96.3 and is registered through GoDaddy.com, LLC. While the exact creation date is not disclosed, the domain’s infrastructure and blocklist status indicate recent deployment targeting crypto users. Trust scores across threat intelligence platforms remain critically low due to its active credential harvesting behavior.

To mitigate exposure, avoid accessing this domain or any suspicious links claiming to represent NDAX or related exchanges. Users who may have entered credentials should immediately revoke wallet access, transfer assets to a new wallet, and scan devices for malware. Report the domain to your exchange and threat platforms to aid in blocklisting. Exercise caution with unsolicited emails or messages referencing crypto deposits, logins, or account verification.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: GoDaddy.com, LLC
- IP: 188.114.96.3

## Detection Status
- VirusTotal: 21 vendors flagged
- Google Safe Browsing: FLAGGED
- Blocklists: 0 hits

## Evidence
- PhishDestroy: https://phishdestroy.io/domain/ndaxexchnge-en.tem3.io/
- LLM endpoint: https://phishdestroy.io/domain/ndaxexchnge-en.tem3.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ndaxexchnge-en.tem3.io/
Last updated: 2026-03-26