# home-mtamsk-eng-wallet.pages.dev — MALICIOUS

> home-mtamsk-eng-wallet.pages.dev is flagged for crypto draining risk. Avoid interaction as it has been taken offline after multiple security alerts.

## Summary
PhishDestroy identifies home-mtamsk-eng-wallet.pages.dev as a high-risk crypto drainer domain designed to steal cryptocurrencies from unsuspecting users. Crypto drainers are particularly dangerous as they can lead to irreversible financial loss by compromising digital wallets and siphoning assets directly. Users seeking to protect their digital funds must be vigilant against such threats.

The domain was created recently on February 21, 2026, and registered through Cloudflare, Inc. It has already been flagged by 14 out of 95 security vendors on VirusTotal and appears on three reputable security blocklists. Google Safe Browsing categorizes it under social engineering threats, further confirming its role in deceptive schemes. At the time of this advisory, the domain has been taken offline, which prevents further active exploitation but does not guarantee safety if cached or bookmarked.

Users should avoid visiting or interacting with home-mtamsk-eng-wallet.pages.dev, especially refraining from entering any wallet credentials or crypto-related information. It is recommended to run updated anti-malware scans if any access occurred and to monitor wallet activity closely for unauthorized transactions. Staying informed about emerging crypto scams and verifying domain legitimacy before engagement remains critical for digital asset security.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.46.243
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["graham.ns.cloudflare.com", "nora.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["ADMINUSLabs", "ChainPatrol", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Fortinet", "G-Data", "Google Safebrowsing", "Kaspersky", "Lionic", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: FLAGGED
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019a7caa-dd77-70ac-ae85-3cda5e49805e.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/24a9c478-d0f1-4aca-9a3e-0984f4ff34a4
- PhishDestroy: https://phishdestroy.io/domain/home-mtamsk-eng-wallet.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/home-mtamsk-eng-wallet.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/home-mtamsk-eng-wallet.pages.dev/
Last updated: 2026-03-19