# icloud-iforgot.live — MALICIOUS

> icloud-iforgot[.]live is a confirmed phishing domain operating in the crypto space. Our automated scanners detected wallet-draining capabilities on this site. This domain has been flagged and added to global threat intelligence feeds.

## Summary
Threat Overview
The domain icloud-iforgot[.]live has been identified as a cryptocurrency phishing website. This malicious site targets Web3 users by mimicking legitimate crypto platforms to steal wallet credentials and digital assets.
Attack Analysis
Phishing sites in the cryptocurrency space commonly employ wallet-draining techniques, fake token approval requests, and seed phrase harvesting to steal digital assets from unsuspecting victims.
Risk Indicators

- Domain registered on live TLD
- Contains cryptocurrency-related keywords
- Domain length: 19 characters
- Vt Detected
- Drainer Detected

Protection Tips
Always verify URLs before connecting your wallet. Use bookmarks for frequently visited crypto platforms. Enable transaction simulation tools to preview what you're signing.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 200)
- Page title: iCloud

## Domain Intelligence
- Registered: 2026-03-05 23:47:57
- Registrar: Gransy, s.r.o.
- IP: 31.148.99.121
- Nameservers: paislee.ns.cloudflare.com quentin.ns.cloudflare.com
- SSL Issuer: R13

## Detection Status
- VirusTotal: 6 vendors flagged
  Vendors: ["alphaMountain.ai", "BitDefender", "CyRadar", "DNS8", "G-Data", "Sophos"]
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Live Page Content

### Page Text
iCloud http://Page X/ is not available This webpage is not available Reload Details The server at Page can't be found, because the DNS lookup failed.  DNS is the network
        service that translates a website's name to its Internet address.  This
        error is most often caused by having no connection to the Internet or a
        misconfigured network.  It can also be caused by an unresponsive DNS
        server or a firewall preventing Google Chrome from accessing the network. Error code: DNS_PROBE_FINISHED_NXDOMAIN Unable to resolve the server's DNS address.

### Form Fields
- q
- text
- submit

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ceeea-1702-752b-9395-1e45501ce0a1.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/88adc243-c306-4517-add7-da92e3fecfa4
- PhishDestroy: https://phishdestroy.io/domain/icloud-iforgot.live/
- LLM endpoint: https://phishdestroy.io/domain/icloud-iforgot.live/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/icloud-iforgot.live/
Last updated: 2026-03-16