# vinted-verif.haixudq.com — SUSPICIOUS > Domain vinted-verif.haixudq.com identified as brand impersonation crypto drainer with 0/95 VirusTotal detections. Avoid transactions immediately. ## Summary PhishDestroy identifies the domain vinted-verif.haixudq.com as an active brand impersonation crypto drainer designed to steal cryptocurrency assets by masquerading as a legitimate verification portal for the Vinted platform. This domain leverages deceptive branding to trick users into connecting their crypto wallets under the guise of account verification, after which malicious smart contracts silently drain funds. The threat is categorized as a crypto drainer because it specifically targets wallet connections and executes unauthorized transactions without user consent, a hallmark of modern credential theft phishing adapted for decentralized finance environments. This domain was flagged following rigorous technical analysis revealing multiple red flags: it currently shows 0 detections out of 95 VirusTotal scanners, indicating it has not yet been widely recognized by security vendors despite clear malicious intent. The domain was registered on May 11, 2012 through Gname.com Pte. Ltd., a registrar known to facilitate bulk domain registrations that often mask illicit operations. It resolves to IP address 188.114.96.3, which is associated with multiple low-reputation hosting providers. Additionally, the presence of a Let's Encrypt SSL certificate does not indicate legitimacy, as threat actors routinely obtain valid certificates to enhance phishing credibility and bypass browser warnings. Users who visited or interacted with this domain should treat it as compromised immediately. Disconnect any connected cryptocurrency wallets from this session, transfer remaining assets to a new, clean wallet, and perform a full security audit of wallet permissions and browser extensions. If any transactions were authorized, contact the wallet provider or exchange support immediately to report fraud and seek recovery assistance where applicable. Do not enter any credentials or connect wallets to unverified or unexpected domains, especially those resembling support or verification portals for known services like Vinted. Always verify URLs through official channels and use bookmarks for critical services. Block this domain at network and device levels to prevent future exposure. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2012-05-11 17:39:22 - Registrar: Gname.com Pte. Ltd. - IP: 188.114.96.3 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/vinted-verif.haixudq.com - PhishDestroy: https://phishdestroy.io/domain/vinted-verif.haixudq.com/ - LLM endpoint: https://phishdestroy.io/domain/vinted-verif.haixudq.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/vinted-verif.haixudq.com/ Last updated: 2026-04-08