# suiteapp-eng.wixstudio.com — SUSPICIOUS > suiteapp-eng.wixstudio.com hosts a crypto drainer impersonating Wix, delivering malware to drain wallets after tricking users. VirusTotal: 0/95 detections. ## Summary PhishDestroy identifies suiteapp-eng.wixstudio.com as an active crypto drainer impersonating the Wix brand, designed to deceive users into connecting cryptocurrency wallets before draining assets. This domain leverages a spoofed suite application interface to masquerade as a legitimate Wix service, specifically targeting users seeking web development or app integration tools. No known drainer kit signatures are associated with the domain at this stage, though the infrastructure suggests it may rely on generic JavaScript-based wallet drainers common in such campaigns. This domain resolves to a single IP address (34.144.206.118) hosted on Google Cloud Platform, with an SSL certificate issued by Let's Encrypt to support HTTPS lures. According to VirusTotal aggregated scans, the domain remains undetected across 95 antivirus engines, indicating a low signature-based threat profile at present. The domain was registered using a privacy-protected registrar, with creation details obscured, and currently shows no presence on Google Safe Browsing or major public blocklists as of this assessment. The infrastructure’s lack of prior flagging suggests either a recently deployed or rapidly evolving threat actor operation. Suiteapp-eng.wixstudio.com remains classified as an active threat under investigation, with PhishDestroy recommending immediate network and endpoint blocking of the IP and domain to mitigate exposure. Users should avoid accessing the link entirely and report any interactions to their security teams. While current detections are low, the presence of a Let's Encrypt certificate and Wix impersonation strongly indicate malicious intent aimed at cryptocurrency theft. This advisory will be updated upon completion of forensic sandbox analysis and additional threat intelligence correlation. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: REGISTRAR_NOT_FOUND - IP: 34.144.206.118 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/suiteapp-eng.wixstudio.com - PhishDestroy: https://phishdestroy.io/domain/suiteapp-eng.wixstudio.com/ - LLM endpoint: https://phishdestroy.io/domain/suiteapp-eng.wixstudio.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/suiteapp-eng.wixstudio.com/ Last updated: 2026-04-08