# uphold-com-cd.typedream.app — SUSPICIOUS > Site uphold-com-cd.typedream.app hosts crypto wallet drainers with 4/95 VirusTotal detections. Check the full report. ## Summary PhishDestroy identifies uphold-com-cd.typedream.app as an active cryptocurrency wallet drainer impersonating the Uphold brand. The domain employs a phishing kit designed to trick users into connecting cryptocurrency wallets, triggering unauthorized transactions that drain funds to attacker-controlled addresses. Typedream.app is a legitimate no-code platform misused via subdomains to host malicious landing pages, highlighting the importance of verifying subdomain legitimacy before interaction. This domain was flagged by Google Safe Browsing under SOCIAL_ENGINEERING with a VirusTotal score of 4 out of 95 security vendors detecting malicious content. It resolves to IP address 188.114.97.3 and uses a Google Trust Services SSL certificate to appear legitimate. The domain was registered through Cloudflare, Inc., though only the CDN proxy is visible due to privacy protection masking underlying registration details. Creation appears recent, with no historical data available, suggesting a short-lived campaign targeting distracted users familiar with Uphold’s platform. At the time of analysis, the site remains active and accessible, with ongoing hosting through Typedream.app’s infrastructure. Immediate actions for users include avoiding the domain entirely, verifying any Uphold-related link through official channels, and scanning wallets for unauthorized connections using tools like WalletConnect or blockchain explorers. While this specific domain has elevated risk due to active phishing activity, users should remain vigilant as threat actors frequently shift infrastructure. The remaining risk is high for individuals who interact with the page without security precautions, emphasizing the need for wallet isolation and offline transaction verification. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: REGISTRAR_NOT_FOUND - IP: 188.114.97.3 ## Detection Status - VirusTotal: 4 vendors flagged - Google Safe Browsing: FLAGGED - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/uphold-com-cd.typedream.app - PhishDestroy: https://phishdestroy.io/domain/uphold-com-cd.typedream.app/ - LLM endpoint: https://phishdestroy.io/domain/uphold-com-cd.typedream.app/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/uphold-com-cd.typedream.app/ Last updated: 2026-04-10