# home-coinbae-wallet-ext.pages.dev — MALICIOUS

> Discover why home-coinbae-wallet-ext.pages.dev is flagged for crypto theft risks. Stay informed and protect your digital assets from this dangerous domain.

## Summary
PhishDestroy identifies home-coinbae-wallet-ext.pages.dev as a high-risk crypto drainer domain designed to steal users’ cryptocurrency assets. Crypto drainer threats are especially dangerous due to the irreversible nature of blockchain transactions, making stolen funds nearly impossible to recover. Users interacting with such sites face significant financial loss.

The domain was registered via Cloudflare, Inc. and remains active since its creation on February 21, 2026. It is flagged by multiple security vendors and appears on three security blocklists, including Google Safe Browsing labeling it as a social engineering threat. These indicators suggest the domain operates as a fraudulent wallet extension or interface aiming to trick users into divulging private keys or seed phrases.

Users should avoid visiting or interacting with home-coinbae-wallet-ext.pages.dev and never enter any sensitive wallet information on suspicious sites. It is crucial to rely only on official wallet providers and verify URLs carefully. Employing updated antivirus software and browser protections can help block access to such malicious domains and safeguard digital assets.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.44.232
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["plato.ns.cloudflare.com", "athena.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 16 vendors flagged
  Vendors: ["ADMINUSLabs", "ChainPatrol", "Criminal IP", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Google Safebrowsing", "Kaspersky", "Lionic", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: FLAGGED
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "MetaMask"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019a052c-cec8-74b6-a9e8-2c5c375b3e87.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/738a188b-44d4-4228-b14f-65e074110ff9
- PhishDestroy: https://phishdestroy.io/domain/home-coinbae-wallet-ext.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/home-coinbae-wallet-ext.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/home-coinbae-wallet-ext.pages.dev/
Last updated: 2026-03-19