# claimmegadicetoken.pages.dev — SUSPICIOUS > PhishDestroy identifies claimmegadicetoken.pages.dev as a brand impersonation threat impersonating OKX, flagged by 0 of 95 VirusTotal vendors. Block immediately. ## Summary PhishDestroy’s anti-phishing systems have identified the domain claimmegadicetoken.pages.dev as an active brand impersonation threat impersonating the cryptocurrency exchange OKX. The domain is currently under investigation as a potential vector for crypto drainer campaigns or credential theft campaigns targeting OKX users. At present, the site remains unflagged by automated detection systems but exhibits multiple red flags consistent with malicious intent, including the mimicking of OKX branding and promotional language related to a nonexistent token offering. This domain resolves to IP address 188.114.97.3 and is registered through Cloudflare, Inc. The SSL certificate is issued by Google Trust Services, which is not indicative of malicious infrastructure but is commonly abused in phishing campaigns due to legitimate provider trust. As of the latest scan, the domain has not been flagged by any of the 95 VirusTotal vendors, indicating a low detection rate despite suspicious characteristics. No historical blocklist data is currently available for this domain, suggesting either recent deployment or evasion tactics. The use of Cloudflare Pages (pages.dev) as a hosting platform further complicates detection and takedown efforts, as these services are frequently leveraged by threat actors to rapidly deploy and rotate malicious pages. The current status of this domain remains active, with no confirmed takedown or remediation. Given the impersonation of a major cryptocurrency exchange and the potential for crypto drainer or credential theft operations, PhishDestroy advises immediate blocking of claimmegadicetoken.pages.dev at the network and DNS levels. Users should be warned against interacting with any communications referencing this domain or its associated “DICE token” claims. Security teams are encouraged to monitor for related domains and monitor for traffic patterns involving this IP or domain. Organizations should also review email security policies to prevent delivery of messages referencing this threat. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) - Target brand: OKX ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 188.114.97.3 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/4c3b5605-a502-4f6e-a51c-126710b1c830 - PhishDestroy: https://phishdestroy.io/domain/claimmegadicetoken.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/claimmegadicetoken.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/claimmegadicetoken.pages.dev/ Last updated: 2026-03-26