# somaliaz.com — MALICIOUS

> somaliaz.com impersonates KuCoin with high risk. This domain is offline but flagged for phishing. Stay cautious and verify before visiting.

## Summary
PhishDestroy identifies somaliaz.com as a high-risk brand impersonation phishing domain targeting users of KuCoin, a popular cryptocurrency exchange. The domain attempts to deceive visitors by mimicking KuCoin’s branding and page title, aiming to steal sensitive user credentials or funds. Such threats are critical as they exploit user trust in well-known brands to facilitate fraud and financial loss.

The domain somaliaz.com was registered recently on March 5, 2026, using the registrar Gname.com Pte. Ltd. It resolved to IP address 207.56.8.46 and appeared on three distinct security blocklists. The Gridinsoft trust score rates it at 26 out of 100, indicating a suspicious reputation. Additionally, VirusTotal flagged it by 14 out of 95 security vendors, reinforcing its malicious nature. These combined signals prompted its current offline status, preventing further active phishing attempts.

Users should remain vigilant and avoid interacting with somaliaz.com or any suspicious KuCoin impersonation sites. Always verify URLs carefully, access KuCoin services directly through official channels, and enable two-factor authentication on accounts. If users suspect they have entered credentials on a fraudulent site, immediate password changes and account monitoring are advised to mitigate potential damage.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 0)
- Target brand: KuCoin
- Page title: kuCoin

## Domain Intelligence
- Registered: 2026-03-05 01:07:02
- Registrar: Gname.com Pte. Ltd.
- Country: SG
- IP: 207.56.8.46
- IP Country: HK
- IP City: Hong Kong
- IP Org: AS54801 Zillion Network Inc.
- Nameservers: ["a3.share-dns.com", "b3.share-dns.net"]
- SSL Issuer: none

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "Chong Lua Dao", "CRDF", "CyRadar", "Emsisoft", "Fortinet", "G-Data", "Kaspersky", "Netcraft", "OpenPhish", "SOCRadar", "Trustwave", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://i.ibb.co/BVSStRZt/119850ff894b.png
- Cloudflare Radar: https://radar.cloudflare.com/domains/somaliaz.com
- PhishDestroy: https://phishdestroy.io/domain/somaliaz.com/
- LLM endpoint: https://phishdestroy.io/domain/somaliaz.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/somaliaz.com/
Last updated: 2026-03-19