# new-official-zeddex-swap.pages.dev — SUSPICIOUS > PhishDestroy identifies new-official-zeddex-swap.pages.dev as a crypto drainer with 0/95 VirusTotal detections. ## Summary PhishDestroy identifies new-official-zeddex-swap.pages.dev as a suspected crypto drainer impersonating Zeddex swap services. The domain leverages Cloudflare’s infrastructure and a Google Trust Services SSL certificate, suggesting an attempt to appear legitimate while facilitating cryptocurrency theft via deceptive transaction flows. No specific drainer kit signatures were available at the time of analysis, but the use of a generic swap-themed domain implies a focus on tricking users into connecting wallets and approving malicious token approvals. The domain’s naming convention ('official-zeddex-swap') mirrors legitimate swap platforms to exploit user trust in branded services. Technical indicators for this domain are as follows: VirusTotal currently reports 0 detections out of 95 scanners, indicating it remains under the radar of most threat intelligence platforms. The domain resolves to IP address 172.66.47.105, which is part of Cloudflare’s edge network. The site is registered through Cloudflare, Inc., and holds a valid SSL certificate issued by Google Trust Services (GTS). While the exact creation date is not provided in the available data, the use of a .pages.dev subdomain (a platform commonly used for rapid deployment of deceptive content) suggests recent or temporary setup. As of this analysis, the domain is not blocked by Google Safe Browsing (GSB) based on available threat feeds. The current status of new-official-zeddex-swap.pages.dev is active and under investigation by security researchers. No active takedown actions have been publicly recorded, and the domain remains accessible without blocking from major browsers or security services. Given the absence of detections and the domain’s recent deployment patterns, the risk level remains elevated due to the potential for cryptocurrency theft. Users should treat this domain with extreme caution—avoid clicking links, never connect wallets, and report any suspicious activity to relevant platforms or security teams. Remaining risk includes continued operation until reported and added to blocklists, with possibility of expanded use in broader phishing campaigns targeting crypto users. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 172.66.47.105 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/9f2fba32-61dc-4d28-9ca2-2db027aa4d92 - PhishDestroy: https://phishdestroy.io/domain/new-official-zeddex-swap.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/new-official-zeddex-swap.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/new-official-zeddex-swap.pages.dev/ Last updated: 2026-04-12