# accountt-wallete-aave.pages.dev — SUSPICIOUS

> accountt-wallete-aave.pages.dev impersonates Aave’s official wallet to steal crypto. Resolves to 172.66.44.85. Do not connect wallets or enter seed phrases here.

## Summary
PhishDestroy identifies accountt-wallete-aave.pages.dev as an active brand-impersonation domain targeting Aave users with a fake wallet interface designed to drain cryptocurrency assets. The site leverages a visually similar name and the legitimate *.pages.dev subdomain service to appear authentic, aiming to trick visitors into connecting their wallets and signing malicious transactions. No evidence of a custom drainer kit has been observed in sandbox analysis; instead, the threat likely relies on social engineering and UI mimicry to deceive users into authorizing transfers.  This domain was flagged with a VirusTotal detection score of 0/95 at time of analysis. It resolves to IP 172.66.44.85 via Cloudflare, Inc. and uses a Google Trust Services SSL certificate. The domain is hosted on Cloudflare Pages, a legitimate platform often abused by threat actors to host short-lived phishing pages. As of the latest scan, it remains unlisted on Google Safe Browsing and has not been blocked by major threat intelligence feeds, indicating a newly emerged or stealthily operated campaign.  Accountt-wallete-aave.pages.dev is currently active and under continuous monitoring. No takedown has been confirmed. Users are advised to verify URLs carefully, avoid entering seed phrases or connecting wallets to unknown sites, and cross-check domains against official Aave platforms. The risk remains high due to low detection rates and the use of a trusted hosting provider, emphasizing the need for heightened vigilance in cryptocurrency-related interactions.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)
- Target brand: Aave

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.44.85

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/accountt-wallete-aave.pages.dev
- PhishDestroy: https://phishdestroy.io/domain/accountt-wallete-aave.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/accountt-wallete-aave.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/accountt-wallete-aave.pages.dev/
Last updated: 2026-04-04