# beaming.cool — MALICIOUS

> beaming.cool is an active phishing site flagged on blocklists and VirusTotal. Learn how it works and protect yourself from online scams.

## Summary
PhishDestroy identifies beaming.cool as a high-risk phishing domain currently active and posing a serious danger to internet users. This site attempts to deceive visitors by mimicking legitimate services or communications to steal sensitive information such as login credentials or financial data. Being flagged on multiple blocklists and detected by several security vendors highlights the urgency to avoid this domain.

This phishing campaign typically operates by directing users to beaming.cool through malicious links or deceptive emails. Once on the site, victims may be prompted to enter personal details or download harmful content, leading to identity theft or financial loss. The domain resolves to IP 151.247.193.142 and is confirmed as malicious by 15 out of 95 VirusTotal scanners, reinforcing its threat credibility.

If you have visited beaming.cool, it is crucial to immediately cease interaction with the site and avoid submitting any information. Users should run a comprehensive malware scan on their devices, change passwords for potentially compromised accounts, and monitor financial statements for suspicious activities. Staying vigilant and recognizing phishing tactics can prevent harm from evolving threats like beaming.cool.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 200)
- Page title: Immortal

## Domain Intelligence
- Registered: 2026-03-06 07:07:01
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- Country: HK
- IP: 151.247.193.142
- IP Country: FR
- IP City: Paris
- IP Org: AS399486 12651980 CANADA INC.
- Nameservers: ["ns1.eggywall.cc", "ns2.eggywall.cc"]
- SSL Issuer: Let's Encrypt / E8

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "CRDF", "CyRadar", "ESET", "Forcepoint ThreatSeeker", "G-Data", "Gridinsoft", "Lionic", "Phishing Database", "Seclookup", "SOCRadar", "Sophos"]
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "PhishingDB"]

## Live Page Content

### Page Text
Verifying Browser | EggyWall Browser Verification This site is protected by EggyWall . We are currently verifying your browser integrity and network legitimacy. This automated process should only take a few seconds. © 2026 EggyWall — Resilient. Smart. Secure. contact@eggywall.cc

### External Scripts
- https://cdnjs.cloudflare.com/ajax/libs/crypto-js/4.0.0/crypto-js.min.js

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cc1f3-1b4e-7726-b741-a4247e505e14.png
- Cloudflare Radar: https://radar.cloudflare.com/domains/beaming.cool
- Wayback Machine: https://web.archive.org/web/https://beaming.cool
- PhishDestroy: https://phishdestroy.io/domain/beaming.cool/
- LLM endpoint: https://phishdestroy.io/domain/beaming.cool/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/beaming.cool/
Last updated: 2026-03-16