# verifybep.org — SUSPICIOUS

> verifybep.org is a credential phishing domain impersonating cryptocurrency wallet logins. Blocked by MetaMask, it resolves to IP 77.245.76.

## Summary
PhishDestroy identifies verifybep.org as an active credential phishing domain posing as a cryptocurrency wallet login portal. The threat involves tricking users into entering their wallet credentials, which are then harvested by attackers for unauthorized access and theft of digital assets. This domain specifically targets victims by mimicking legitimate wallet interfaces, making it a high-risk threat to cryptocurrency users.  

This domain was flagged during routine fraud detection analysis. Key technical indicators include 0 detections out of 95 on VirusTotal, indicating it has evaded traditional antivirus tools for now. The domain resolves to IP address 77.245.76.110 and is registered through GoDaddy.com, LLC using a Let's Encrypt SSL certificate. Notably, verifybep.org was created on March 27, 2026, and currently appears on 2 security blocklists. It has also been blocked by MetaMask and SEAL, signaling early-stage recognition by security providers despite low detection rates on VirusTotal. The recent creation date combined with evasion techniques suggests this is a newly deployed threat actively targeting cryptocurrency users.  

Mitigation steps for this credential phishing threat are critical due to its active status and low detection rates. Users should immediately block or avoid accessing verifybep.org and report it to their security teams or fraud reporting platforms. Cryptocurrency wallet users must verify URLs manually, use hardware wallets for transactions, and enable multi-factor authentication where possible. Security teams should add verifybep.org to their blocklists and investigate any internal access attempts to this domain. Additionally, monitoring network traffic for connections to IP 77.245.76.110 can help prevent data exfiltration to attacker-controlled servers. Proactive user education on recognizing fake login portals is essential to reduce the risk of credential theft and financial loss.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-27 09:23:09
- Registrar: GoDaddy.com, LLC
- IP: 77.245.76.110

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["MetaMask", "SEAL"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/56c01c53-3c24-44d1-8225-6e9bc4dd7f2c
- PhishDestroy: https://phishdestroy.io/domain/verifybep.org/
- LLM endpoint: https://phishdestroy.io/domain/verifybep.org/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/verifybep.org/
Last updated: 2026-03-30