# web3vexoduwallet.webflow.io — SUSPICIOUS > web3vexoduwallet.webflow.io operates as a crypto drainer with 0/95 VirusTotal detections. Blocked by MetaMask and SEAL. Avoid interacting with this domain. ## Summary PhishDestroy identifies web3vexoduwallet.webflow.io as an active crypto drainer domain under investigation, posing a significant threat to cryptocurrency users. This Webflow-hosted site is designed to deceive visitors into connecting their wallets, enabling unauthorized token transfers and asset depletion. Unsuspecting users may encounter this domain through social engineering tactics, including fake wallet interfaces or fraudulent NFT promotions. Once a wallet is connected, the drainer executes silent transactions to siphon funds to attacker-controlled addresses, often leveraging obfuscation techniques to evade detection. This domain exhibits multiple red flags supported by concrete evidence. VirusTotal currently shows 0/95 detections, indicating it remains undetected by most antivirus engines despite its malicious activity. It has been blocked by critical security tools, including MetaMask and SEAL, which are widely used in the cryptocurrency ecosystem. The domain resolves to IP address 172.64.151.8, which is associated with Cloudflare infrastructure, and holds a valid SSL certificate issued by Google Trust Services—a tactic commonly used to appear legitimate. Additionally, the domain appears on two independent security blocklists, further confirming its malicious reputation. While the exact creation date is not provided, its active status and recent detection underscore the urgency of containment. Users who have visited web3vexoduwallet.webflow.io should immediately revoke any wallet connections to this domain using tools like revoke.cash or wallet provider interfaces. Disconnecting is critical to prevent ongoing unauthorized transactions. Next, transfer any remaining assets to a newly generated wallet address to ensure safety. Enable multi-factor authentication on all cryptocurrency accounts and consider using hardware wallets for enhanced protection. Report the domain to your wallet provider and relevant security platforms to aid in broader mitigation efforts. Stay vigilant against similar fraudulent domains and verify URLs before engaging with any crypto-related services. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: REGISTRAR_NOT_FOUND - IP: 172.64.151.8 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 2 hits Lists: ["MetaMask", "SEAL"] ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/web3vexoduwallet.webflow.io - PhishDestroy: https://phishdestroy.io/domain/web3vexoduwallet.webflow.io/ - LLM endpoint: https://phishdestroy.io/domain/web3vexoduwallet.webflow.io/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/web3vexoduwallet.webflow.io/ Last updated: 2026-04-08