# the-graph.entry-cryptolist.app — SUSPICIOUS > the-graph.entry-cryptolist.app is a crypto drainer phishing site. 3/95 VirusTotal engines detect it. Avoid entering credentials or crypto wallet details. ## Summary PhishDestroy identifies the-graph.entry-cryptolist.app as an active crypto drainer phishing domain designed to siphon cryptocurrency assets from unwitting users. The threat type is a cryptocurrency drainer, which typically involves luring victims to connect their wallets under false pretenses before draining tokens via malicious smart contracts or hidden transaction approvals. This domain was flagged due to its malicious infrastructure geared toward credential theft and fund misappropriation, posing an elevated risk to cryptocurrency holders and Web3 users. The-graph.entry-cryptolist.app resolves to IP address 188.114.96.3 and operates under a Google Trust Services SSL certificate to appear legitimate. VirusTotal detection stands at 3 out of 95 security vendors as of the latest scan, indicating low but present recognition of malicious intent. The domain uses a deceptive subdomain structure (entry-cryptolist) to mimic legitimate crypto-related services, particularly targeting users of graph-based applications or analytics platforms. While the SSL certificate is issued by a trusted authority, the presence of a crypto drainer payload suggests this certificate is abused for initial trust establishment before malicious execution occurs. The combination of a generic-looking domain, fresh infrastructure, and low detection rate points to a recently deployed campaign aimed at evading initial scrutiny. Mitigation for this specific crypto drainer threat involves immediate avoidance: do not visit the-graph.entry-cryptolist.app or interact with any links associated with it, including QR codes or embedded buttons. Users should revoke any wallet connections previously made to this domain through their wallet provider’s connection management interface. Enable hardware wallet signing and disable auto-approval of transactions to reduce exposure. Report the domain through browser-based phishing tools or VirusTotal to help block future access. Always verify URLs via official project channels before engaging with Web3 interfaces. Stay vigilant against socially engineered lures referencing token lists, liquidity graphs, or yield optimization tools. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: REGISTRAR_NOT_FOUND - IP: 188.114.96.3 ## Detection Status - VirusTotal: 3 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/the-graph.entry-cryptolist.app - PhishDestroy: https://phishdestroy.io/domain/the-graph.entry-cryptolist.app/ - LLM endpoint: https://phishdestroy.io/domain/the-graph.entry-cryptolist.app/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/the-graph.entry-cryptolist.app/ Last updated: 2026-04-10