# newweb3sol.pages.dev — SUSPICIOUS

> newweb3sol.pages.dev hosts a crypto drainer impersonating Web3 projects. Verify URLs on PhishDestroy—VT shows 0/95 detections currently.

## Summary
PhishDestroy identifies newweb3sol.pages.dev as an active crypto drainer campaign, leveraging a generic phishing lure to target cryptocurrency users. The domain mimics legitimate Web3 platforms, likely deploying a JavaScript-based drainer kit designed to siphon funds from victim wallets upon interaction. No direct brand impersonation was confirmed in telemetry, but the domain’s naming convention suggests a broad Web3 deception strategy aimed at unsuspecting crypto investors.

Technical indicators for this domain are as follows: VirusTotal currently reports 0 detections out of 95 engines, indicating low signature coverage. The domain was registered through Cloudflare, Inc., resolving to IP 188.114.96.3, which is associated with Cloudflare’s infrastructure. The SSL certificate is issued by Google Trust Services, and the domain is served via Cloudflare Pages. No blocklist entries were identified at the time of analysis, and Google Safe Browsing (GSB) has not flagged the domain.

This domain is currently active and under investigation by PhishDestroy’s threat intelligence team. Users are advised to avoid interacting with newweb3sol.pages.dev and verify any Web3-related links through PhishDestroy’s verification portal. While the immediate risk remains under evaluation due to low detection rates, the lack of historical blocklisting suggests this could be a newly deployed campaign. Proactive blocking of the domain and associated IP (188.114.96.3) is recommended to mitigate potential exposure.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.96.3

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/32b9d389-efae-4e36-aa0f-5e7614417be5
- PhishDestroy: https://phishdestroy.io/domain/newweb3sol.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/newweb3sol.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/newweb3sol.pages.dev/
Last updated: 2026-03-28