# staking.origent.ai — SUSPICIOUS > PhishDestroy identifies staking.origent.ai as a crypto drainer phishing site with 0/95 VirusTotal detections. ## Summary PhishDestroy flags staking.origent.ai as a live crypto drainer domain designed to mimic a legitimate staking platform for Origent users. The domain is weaponized to trick cryptocurrency holders into connecting their wallets and signing malicious transactions that silently drain balances. At the time of detection, this domain had zero detections on VirusTotal out of 95 engines, meaning mainstream scanners have not yet blacklisted it. The site resolves to 185.209.228.68, uses a Let’s Encrypt SSL certificate, and was registered through NAMECHEAP INC on December 17, 2024. This threat operates as a generic phishing page that pretends to be Origent’s official staking interface. Visitors are prompted to “connect wallet” and may see fake rewards or APYs inflated to urgency, then prompted to sign blockchain transactions that authorize token transfers or approvals to attacker-controlled contracts. The domain is only days old, which explains why detection coverage remains sparse. Because it leverages a recently issued SSL certificate from a trusted provider, naive users may believe the site is legitimate at first glance. If you visited staking.origent.ai, immediately disconnect your wallet, revoke any token approvals you signed on this domain, and move remaining assets to a clean wallet. Scan your device with updated antivirus and consider rotating all wallet passwords and seed phrases used on any machine that accessed the site. Always verify staking links by typing the official Origent domain yourself and enable wallet transaction simulation features where available. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2024-12-17 18:07:22 - Registrar: NAMECHEAP INC - IP: 185.209.228.68 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/6869b787-d7b4-47db-aec3-70a2e7c5b15f - PhishDestroy: https://phishdestroy.io/domain/staking.origent.ai/ - LLM endpoint: https://phishdestroy.io/domain/staking.origent.ai/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/staking.origent.ai/ Last updated: 2026-03-24