# slokn3.cc — SUSPICIOUS

> slokn3.cc is a confirmed crypto drainer phishing site mimicking a legitimate login. VirusTotal flags 2/95 security vendors.

## Summary
PhishDestroy identifies slokn3.cc as an active crypto drainer phishing domain designed to trick users into connecting their wallets or entering seed phrases. This domain resolves to IP address 141.98.234.104 and was registered through NICENIC INTERNATIONAL GROUP CO., LIMITED. The domain was created on February 19, 2026, and currently carries an elevated risk level due to its active deployment in phishing campaigns targeting cryptocurrency users.  This domain poses a significant threat by impersonating legitimate cryptocurrency platforms or services, tricking users into authorizing malicious transactions or disclosing sensitive credentials. According to VirusTotal data, 2 out of 95 security vendors flagged this domain as malicious, indicating a low but present detection rate among security tools. The domain also utilizes a Let's Encrypt SSL certificate, which may give users a false sense of security. The combination of a recently registered domain, low detection rate, and specific targeting of crypto users elevates the risk to users who interact with the site.  If you visited slokn3.cc, immediately disconnect from the site and revoke any connected wallet permissions. Do not enter any credentials or approve transactions. Scan your device for malware using reputable security software. Report the domain to PhishDestroy to help protect others. Always verify URLs and use bookmarks for trusted crypto platforms to avoid similar threats.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-02-19 11:01:38
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- IP: 141.98.234.104

## Detection Status
- VirusTotal: 2 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/483ab80f-7866-4cbc-b0e6-7e42b245fd08
- PhishDestroy: https://phishdestroy.io/domain/slokn3.cc/
- LLM endpoint: https://phishdestroy.io/domain/slokn3.cc/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/slokn3.cc/
Last updated: 2026-03-28