# acces-raydiuum-swap.pages.dev — SUSPICIOUS

> acces-raydiuum-swap.pages.dev mimics a cryptocurrency swap service to steal wallet credentials. Resolves to IP 172.66.45.40 via Cloudflare.

## Summary
PhishDestroy identifies acces-raydiuum-swap.pages.dev as an ACTIVE generic phishing domain posing as a cryptocurrency swap interface to harvest wallet access credentials. The threat is classified as under_investigation due to limited historical telemetry, but the live domain and infrastructure warrant immediate caution.  

This domain was flagged on 486d3b with zero detections on VirusTotal (0/95 engines), registered through Cloudflare, Inc., resolving to IP 172.66.45.40 and secured by a Google Trust Services SSL certificate. No current listings exist on major blocklists or threat intelligence feeds, suggesting recent deployment or low exposure. The use of Google Trust Services and Cloudflare may provide an initial appearance of legitimacy, but the domain’s naming pattern (acces-raydiuum-swap) and lack of organic reputation indicate a likely impersonation of a legitimate DeFi platform.  

To mitigate risk, users should avoid interacting with any pages hosted on *.pages.dev under this or similar patterns, especially those soliciting wallet connections or private key input. Verify the official domain of any crypto service through independent sources and use hardware wallets or non-custodial interfaces with transaction simulation. Report suspicious links to your security team and avoid clicking unknown URLs. Organizations should monitor for similar domains and block access via DNS filtering based on domain and IP indicators.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.45.40

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/acces-raydiuum-swap.pages.dev
- PhishDestroy: https://phishdestroy.io/domain/acces-raydiuum-swap.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/acces-raydiuum-swap.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/acces-raydiuum-swap.pages.dev/
Last updated: 2026-04-05