# sterk-evolux.com — SUSPICIOUS

> sterk-evolux.com is a crypto drainer posing as Evolux. Google Safe Browsing and 1/95 VirusTotal vendors flag this domain. Verify on PhishDestroy.

## Summary
PhishDestroy identifies sterk-evolux.com as an active crypto drainer, a high-risk threat designed to deceive users into unknowingly transferring cryptocurrency to attacker-controlled wallets. This domain employs social engineering tactics, often mimicking legitimate platforms to exploit trust and extract funds. Users interacting with this domain risk irreversible financial losses, as crypto drainers operate autonomously once initiated.  

This domain was flagged by 1 out of 95 VirusTotal security vendors, indicating limited but confirmed malicious activity. It was registered through NETIM on November 10, 2025, and resolves to IP 91.236.116.172. Google Safe Browsing has blacklisted sterk-evolux.com under the SOCIAL_ENGINEERING category, while its SSL certificate issued by Let's Encrypt may mislead users into believing the site is trustworthy. The domain’s recent creation and association with a known malicious IP further elevate its risk profile.  

To mitigate exposure to this crypto drainer, avoid interacting with sterk-evolux.com entirely. If you’ve already visited the site, do not connect any cryptocurrency wallets or enter sensitive credentials. Use PhishDestroy’s real-time scanning tools to check URLs before clicking, and report suspicious domains to PhishDestroy’s threat intelligence team. Enable wallet safeguards such as transaction confirmations and hardware wallet verification to add layers of protection against unauthorized transfers.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2025-11-10 14:29:54
- Registrar: NETIM
- IP: 91.236.116.172

## Detection Status
- VirusTotal: 1 vendors flagged
- Google Safe Browsing: FLAGGED
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/87083f42-9f6a-4e31-bf6a-2361c6c55c9a
- PhishDestroy: https://phishdestroy.io/domain/sterk-evolux.com/
- LLM endpoint: https://phishdestroy.io/domain/sterk-evolux.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/sterk-evolux.com/
Last updated: 2026-03-22