# explore-coinbase.pages.dev — MALICIOUS

> Warning: explore-coinbase.pages.dev is a dangerous phishing site. Avoid it to protect your data. If visited, take immediate action to secure your accounts.

## Summary
PhishDestroy identifies explore-coinbase.pages.dev as a high-risk phishing domain designed to deceive users into revealing sensitive information. This site has been flagged for social engineering tactics that can lead to identity theft and financial loss.

The phishing scheme typically mimics legitimate Coinbase communication, tricking users into entering login credentials or personal data. By masquerading as a trustworthy source, it exploits user trust to harvest confidential information for malicious use.

If you have visited explore-coinbase.pages.dev, it is crucial to immediately change your passwords, monitor your accounts for suspicious activity, and run a comprehensive security scan. Avoid clicking on any links or providing information on similar suspicious pages to stay protected.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Target brand: Coinbase
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.47.90
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["norm.ns.cloudflare.com", "molly.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["ADMINUSLabs", "ChainPatrol", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Fortinet", "G-Data", "Google Safebrowsing", "Kaspersky", "Lionic", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: FLAGGED
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cd2aa-1638-76b8-b403-2b868a81912e.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/e0213fd7-ff26-4366-aa02-5fadc194cd58
- PhishDestroy: https://phishdestroy.io/domain/explore-coinbase.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/explore-coinbase.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/explore-coinbase.pages.dev/
Last updated: 2026-03-19