# okx-web3-tron-usdt-trc20-000000488.pages.dev — SUSPICIOUS > okx-web3-tron-usdt-trc20-000000488.pages.dev poses as OKX in brand impersonation scam with 0/95 VirusTotal detections. ## Summary PhishDestroy identifies okx-web3-tron-usdt-trc20-000000488.pages.dev as an active brand impersonation site masquerading as OKX, specifically targeting users of USDT-TRC20 transactions. The domain leverages Cloudflare-hosted infrastructure and a Google Trust Services SSL certificate to mimic legitimate OKX services, creating a false sense of authenticity. This site is part of a sophisticated crypto drainer campaign designed to trick users into connecting their wallets or entering credentials under the guise of participating in OKX Web3 promotions or transaction validations. This domain stands out due to its low detection profile despite clear malicious intent. VirusTotal currently shows 0 detections out of 95 scans, indicating that mainstream security tools have not yet flagged it. Registered through Cloudflare, Inc., the domain resolves to IP 172.66.47.107 and was flagged under seed 4f6df3 during an under-investigation status for brand impersonation. It targets the OKX brand with a high-risk approach, likely distributing crypto drainer scripts or harvesting wallet credentials. The combination of a trusted SSL issuer and low blocklist coverage makes this threat particularly insidious for users seeking legitimate OKX services. If you visited okx-web3-tron-usdt-trc20-000000488.pages.dev, immediately disconnect any connected wallets, revoke any unauthorized permissions via your wallet’s security settings, and clear browser data including cache and cookies. Do not enter any credentials or transaction details. Scan your device with updated antivirus software and consider rotating private keys or using a dedicated wallet for high-value assets. Report the domain to your browser provider and to OKX’s official fraud reporting channels. Avoid interacting with any URLs referencing this domain or similar patterns in the future. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) - Target brand: OKX ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 172.66.47.107 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/okx-web3-tron-usdt-trc20-000000488.pages.dev - PhishDestroy: https://phishdestroy.io/domain/okx-web3-tron-usdt-trc20-000000488.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/okx-web3-tron-usdt-trc20-000000488.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/okx-web3-tron-usdt-trc20-000000488.pages.dev/ Last updated: 2026-04-03