# signin.polymarket-cashback.com — SUSPICIOUS

> PhishDestroy warns signin.polymarket-cashback.com is a crypto drainer impersonating Polymarket. Domain created April 03, 2026, undetected by 0/95 VirusTotal.

## Summary
PhishDestroy identifies signin.polymarket-cashback.com as an active credential-phishing domain masquerading as a Polymarket cashback portal. The site prompts users to enter wallet or exchange credentials under the guise of claiming rewards, then silently drains connected crypto assets. Unlike generic phishing pages, this domain uses a Let’s Encrypt SSL certificate and resolves to 172.67.210.84, adding false legitimacy to trick visitors.  This domain was flagged by PhishDestroy on April 03, 2026—just days after creation—and registered through NameSilo, LLC. Despite zero detections on VirusTotal (0/95 scanners as of latest scan), behavioral analysis reveals it functions as a crypto drainer, harvesting private keys and session tokens. The combination of a newly registered domain, low detection rate, and impersonation of a reputable platform makes it a high-risk trap for cryptocurrency users seeking cashback offers.  If you visited signin.polymarket-cashback.com, immediately revoke any connected wallet permissions via your wallet provider’s settings. Do not enter any credentials or connect your wallet. Scan your device with updated antivirus software and consider rotating passwords used on similar platforms. Report the domain to PhishDestroy and your wallet provider for investigation and takedown assistance.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-04-03 21:39:57
- Registrar: NameSilo, LLC
- IP: 172.67.210.84

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/signin.polymarket-cashback.com
- PhishDestroy: https://phishdestroy.io/domain/signin.polymarket-cashback.com/
- LLM endpoint: https://phishdestroy.io/domain/signin.polymarket-cashback.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/signin.polymarket-cashback.com/
Last updated: 2026-04-04