MalwareTips
DANGEROUS

Crypto scam / wallet-drainer

3 of 92 antivirus engines flag this page as malicious. Signals match fake investment platforms and wallet drainers. Never connect a wallet, paste a seed phrase, or deposit crypto here.

Security Review

Is layer-bank.net legit or a scam?

Our verdict:Dangerous· 1/100

Clone of legitimate LayerBank DeFi protocol on a 41-day-old domain flagged as phishing by Kaspersky and others.

Top reasons
Domain is only 41 days old while impersonating an established DeFi protocol.Exact clone of layerbank.finance confirmed by title, description, and layout match.Kaspersky and three other engines flag the page as phishing or malicious.
layer-bank.netScanned 12d ago
Post Facebook
0
Trust score
DANGEROUS
Heuristics 0·MT 12
Category tags
phishingdefi#Phishing#Clone Site#Crypto Fraud92% MT confidence

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence
0/92
Engines flagged this URL
Domain Age
41 days old
Registered Apr 13, 2026
MT Intelligence
Dangerous
Critical likelihood · 92% confidence

MT Intelligence

Advanced threat intelligence
MT Security Analyst
Critical scam likelihoodengineMT · Guardiantrust12/100
MT AgentLive web researchVisual inspectionNetwork correlation
0%
Confidence
The site presents itself as LayerBank, a money market protocol for lending and borrowing, with market statistics and wallet-connect features. Strongest signal is the confirmed clone match to the legitimate layerbank.finance domain, which has established documentation and funding. The domain itself is only 41 days old and was registered through a high-risk registrar with no business records found. Multiple antivirus detections label it malicious or phishing, and independent reports confirm it as a live banking phishing domain. These factors together override the clean visual appearance and valid SSL certificate.
Full dossier
Analysis complete

Page Content

Professional DeFi interface showing lending markets across networks with standard wallet-connect functionality. No login forms or obvious credential harvesters visible, but the entire site mimics the legitimate project's branding and description.

Infrastructure

Hosted on Cloudflare IP with valid Let's Encrypt SSL. Three antivirus engines flagged the page malicious and Kaspersky specifically detected phishing. IP itself shows minimal abuse history.

Domain History

Domain created 41 days ago via Trustname.com registrar. No business registration records exist for the entity. Privacy protection is disabled but the age alone is a major red flag for a financial service.

Web Reputation

Two scam reports and one complaint explicitly label the domain a phishing clone. No positive mentions or legitimate reviews found anywhere. The real project operates exclusively on layerbank.finance.

Risk Factors
5
  • Domain is only 41 days old while impersonating an established DeFi protocol.
  • Exact clone of layerbank.finance confirmed by title, description, and layout match.
  • Kaspersky and three other engines flag the page as phishing or malicious.
  • No business registration or verifiable contact information for the operator.
  • Listed in multiple blocklists according to independent reports.
Positive Signals
3
  • SSL certificate is valid and issued by Let's Encrypt.
  • Hosting IP shows low abuse score.
  • Visual appearance is a clean professional DeFi dashboard with no obvious pop-ups or fake elements.
AI Recommendation
Do not visit or connect any wallet to this site. Use only the official layerbank.finance domain for the real protocol.
Scam network detected
1 linked domain correlated

Fingerprint match confirms this is a direct clone of the legitimate LayerBank DeFi protocol.

layerbank.finance
Next-gen fraud intelligence
Evidence-backedCross-checked

Website Preview

Screenshot of layer-bank.net
LIVE RENDER
layer-bank.net

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site.

Visual Screenshot Analysis

We capture a fresh screenshot of the live page and ask a vision model to look for scam visual patterns — fake trust badges, countdown timers, overlay pop-ups, and visual clones of legitimate brands.

15
/ 100
Low visual risk

Visual red flags detected in the screenshot

Clean professional DeFi interface with standard wallet-connect modal; no scam indicators visible.

Visual risk15/100

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for layer-bank.net, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Domain age
1 months
Registered Apr 2026
Business registration
No public record found
Could not match the site to a registered company — common for small sites.
Clone check
Clones layerbank.finance
The page impersonates a well-known brand's site.
Typosquat check
No look-alike match
The domain doesn't resemble any well-known brand's spelling.
Web mentions
2 scam reports · 1 complaint
Key findings
7 headline facts from open-web research
  • Domain layer-bank.net created April 14, 2026 (41 days old as of May 25, 2026)
  • Flagged as malicious phishing site by PhishDestroy and 15/95 VirusTotal vendors
  • Mimics legitimate LayerBank DeFi protocol (layerbank.finance) which raised $2.3M pre-seed and has active docs/Twitter presence
  • Registered via high-risk registrar Trustname.com (Fewmoretaps OU, Estonian shell with Belarusian owners)
  • Resolves to Cloudflare IP, uses Let's Encrypt SSL, listed in MetaMask/PhishDestroy/SEAL blocklists
  • No mentions or reviews of layer-bank.net as legitimate; all references tie it to phishing alerts
  • Legitimate project uses layerbank.finance domain with established documentation and funding announcements
Scam reports (2)
Direct quotes from public scam databases, forums, and news.
  • phishdestroy.ioopen

    "This domain has been flagged as malicious. Detected by 15 security vendors and listed in 3 public blocklists. ... PhishDestroy identifies layer-bank[.]net as a live banking phishing domain currently impersonating a legitimate financial inst"

  • phishdestroy.ioopen

    "15/95 VT vendors ... 88 Risk Score ... HIGH ... layer-bank.net is a fake banking portal posing as a financial login page. Flagged by 8 of 95 VirusTotal"

Impersonation / typosquat
Clone of layerbank.finance

Exact match to page title 'LayerBank | Universal Money Market' and description of legitimate omni-chain DeFi lending protocol at layerbank.finance / docs.layerbank.finance

Research summary
Narrative write-up from our AI analyst, grounded on the facts above

Phishdestroy.io published two reports identifying layer-bank.net as a live banking phishing domain that impersonates the legitimate LayerBank protocol. The reports note multiple security vendors and blocklist listings. No legitimate business records, reviews, or positive mentions of layer-bank.net were located; all references tie the domain to phishing alerts. The genuine project uses layerbank.finance with documented funding and active presence.

Scam Network Intelligence

Cross-site correlation

This site shares signals with a broader cluster

Moderate correlation

Many scams don't operate alone. We correlate third-party scripts, hosting infrastructure, brand-impersonation signals, and the AI evidence package to detect when a site is part of a broader scam network.

Suspicion score
0/100
ClearLowModerateHighCritical
Evidence (1)
  • Evidence confirms this site is a clone of layerbank.finance.
Linked signals (1)
Clone of layerbank.finance

Antivirus Engines

Detection matrix · live
8 engines flagged this URL

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. Each detection is listed below by engine name — even a single hit is a meaningful signal.

3Malicious5Suspicious54Harmless92Engines
0
of 92
Chong Lua Dao
Malicious· malicious
Kaspersky
Malicious· phishing
Rising
Malicious· malicious
alphaMountain.ai
Suspicious· suspicious
CyRadar
Suspicious· suspicious
Fortinet
Suspicious· spam
Gridinsoft
Suspicious· suspicious
SOCRadar
Suspicious· suspicious

8 antivirus engines flagged this URL. Even a single detection is a meaningful signal — treat this site with extra caution and avoid entering credentials, payment info, or downloading any files.

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Contact Verification

We fetched the page and looked for real-world contact details. Legitimate businesses almost always publish an email on their own domain, a phone number, and a postal address. Scam shops usually don't.

What We Found
No clear contact details on the page
Emails on site's domainNone
Phone numbers2023-2026
Postal addressNot listed
Linked social profiles2
Signal Summary
Contact details look reasonable
  • No contact email found anywhere on the page.
  • No postal address visible on the page.
  • Phone number listed (2023-2026).
  • Links to 2 social profiles.

Domain & Encryption

Domain History
Age41 days old
RegistrarFewmoretaps OU d/b/a Trustname.com
RegisteredApr 13, 2026
ExpiresApr 13, 2027
Owner privacyVisible
Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerLet's Encrypt · E8
ExpiresAug 2, 2026 (69d)
Self-signedNo
Hosting & Technology
HostingCloudflare, Inc.
Server locationUS

Server Reputation

Abuse Intelligence
Confidence score0%
Reports on file1
ISPCloudflare, Inc.
Usage typeContent Delivery Network

Scam-Type Likelihood

3 scam-type patterns detected
Scam-Type Likelihood

0 of 13 categories showed signals

We check every URL against 13 distinct scam categories so the verdict tells you not just how risky the page is, but what kind of risk it carries. Each meter pulls from page signals, web reports, our AI analyst, vision, and the scam-network cluster — not from raw AV labels.

Top match: Crypto Fraud
Crypto Fraud
Moderate likelihood
0/100
  • AI analyst tagged this as crypto fraud / wallet-drainer.
  • AI analyst categorised the site as crypto-themed.
Brand Impersonation
Moderate likelihood
0/100
  • AI analyst tagged this as a brand / clone-site impersonation.
  • Clustered with known brand-impersonation infrastructure.
Phishing
Low-level signals
0/100
  • AI analyst tagged this as phishing.

Crypto scam / wallet-drainer indicators

The page shows patterns common to crypto-investment scams, fake airdrops, and wallet drainers.

  • Do not interact with layer-bank.net

    Do not enter credentials, deposit money, download files, or install browser extensions from this site.

  • Never paste your seed phrase anywhere

    Legitimate wallets, exchanges and support staff will never ask for your 12/24-word recovery phrase. Typing it into any website — even one that looks real — gives attackers full access to your funds.

  • If you already connected a wallet

    Revoke token approvals immediately using revoke.cash or Etherscan's Token Approvals tool. Move remaining funds to a fresh wallet (new seed phrase). Assume the original wallet is compromised.

  • Report the wallet and URL

    File a report at IC3 (FBI Internet Crime Complaint Center) or your country's cybercrime portal. Recovery is unlikely, but reports help law enforcement map the network.

    Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
VirusTotal
ListedCheck ↗
AbuseIPDB
Not listedCheck ↗
Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Referenced Domains

Outbound domains this page links to or loads resources from. Each links to its own security scan.

twitter.commirror.xyzdiscord.comgithub.comstatic.cloudflareinsights.com

Safety FAQ

Common questions about this site, answered from the scan data on this page. These are auto-generated — not hand-written — so they always match the underlying report.

  • Our automated security review flags layer-bank.net as dangerous. Multiple threat indicators were detected — treat the site as a scam until proven otherwise.

Final Verdict

0
Trust / 100
Final Verdict·layer-bank.net
DANGEROUS

Layer-bank.net is a fake DeFi lending site impersonating the real LayerBank protocol. Our analysis shows it is a clone of layerbank.finance, registered only 41 days ago, and flagged as phishing by multiple engines including Kaspersky. Avoid connecting any wallet or entering credentials.

Do not visit or connect any wallet to this site. Use only the official layerbank.finance domain for the real protocol.

AV engines
92
MT passes
2
Net signals
1
Scan another URL
Security review completemalwaretips.com/url-scan
Recently scanned

Other Dangerous reports

Browse all reports
Dangeroustrust1
loureiru.lol
31m ago
Read the review
Dangeroustrust14
cinewhale.cc
50m ago
Read the review
Dangeroustrust39
kabjember.com
2h ago
Read the review
Dangeroustrust41
by42.arswdppo.top
2h ago
Read the review
Dangeroustrust21
astral-games.xyz
2h ago
Read the review
Dangeroustrust25
oneshippros.com
2h ago
Read the review
Dangeroustrust34
movies4u.as
3h ago
Read the review
Dangeroustrust40
cineby.gd
3h ago
Read the review
Dangeroustrust14
lipopeakdrops.com
3h ago
Read the review
Dangeroustrust15
yooutube.com
7h ago
Read the review
Dangeroustrust1
youareanidiot.com
7h ago
Read the review
Dangeroustrust12
flixhd.cc
7h ago
Read the review
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
Scanned by
JackStaff
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.