# uniswapapp.app — MALICIOUS

> UniswapApp.app was a high-risk crypto drainer flagged for social engineering. Avoid interaction; domain is now offline but risks persist.

## Summary
PhishDestroy identifies uniswapapp.app as a high-risk crypto drainer domain designed to steal cryptocurrency assets by tricking users into connecting wallets or revealing private keys. This type of threat is critical because it directly targets digital assets, potentially leading to irreversible financial losses for victims. Social engineering tactics used by this domain aim to exploit the trust users place in legitimate DeFi platforms.

The domain uniswapapp.app was registered on February 21, 2026, and has since been taken offline. It appeared on three separate security blocklists and was flagged by Google Safe Browsing specifically for social engineering. VirusTotal analysis showed that 11 out of 95 security vendors detected malicious activity linked to this domain. The domain registration is associated with a now-defunct registrar, indicating potentially suspicious or abandoned infrastructure.

Users should remain vigilant and avoid interacting with uniswapapp.app or any related URLs. Even though the domain is offline, phishing campaigns often migrate to new domains or use lookalikes. Always verify URLs carefully, avoid unsolicited wallet connection requests, and use trusted sources for DeFi interactions. If users suspect they have engaged with this domain, they should review their wallet activity immediately and consider moving assets to secure wallets.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 0)
- Target brand: Uniswap
- Page title: uniswapapp.app | 521: Web server is down

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Dynadot LLC
- Country: US
- IP: 104.21.72.154
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["alla.ns.cloudflare.com", "milan.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 11 vendors flagged
  Vendors: ["alphaMountain.ai", "BitDefender", "CyRadar", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Google Safebrowsing", "Kaspersky", "Lionic", "Sophos", "VIPRE"]
- Google Safe Browsing: FLAGGED
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/0199a188-8fd6-7369-b81f-22d0ad40ca89.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/15eec9bc-b445-4048-bd35-a349254f6542
- PhishDestroy: https://phishdestroy.io/domain/uniswapapp.app/
- LLM endpoint: https://phishdestroy.io/domain/uniswapapp.app/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/uniswapapp.app/
Last updated: 2026-03-19