# io-brige-terzr.pages.dev — SUSPICIOUS > io-brige-terzr.pages.dev is a crypto drainer impersonating a crypto brand. Verify immediately on PhishDestroy to prevent wallet drain. VT score: 0/95. ## Summary PhishDestroy identifies io-brige-terzr.pages.dev as an active generic phishing domain suspected of operating as a crypto drainer kit. This domain currently shows no affiliation with a specific brand, suggesting it is either a work-in-progress attack or a generic payload distribution mechanism. The infrastructure is hosted on Cloudflare Pages, which is commonly leveraged by threat actors to bypass traditional domain reputation checks and exploit free hosting tiers for malicious payloads. The absence of brand impersonation at this stage indicates potential opportunistic targeting rather than large-scale phishing campaigns. Technical indicators for this domain are as follows: it resolves to IP address 172.66.45.31, which is part of the Cloudflare IP range, and is registered through Cloudflare, Inc. The SSL certificate is issued by Google Trust Services, which may be used to lend false legitimacy to the domain. As of the latest scan, VirusTotal reports 0 detections out of 95 engines, indicating it remains under the radar of most security platforms. The domain is currently active and has not yet been added to major blocklists, emphasizing its recent emergence and unflagged status in threat intelligence feeds. The seed identifier 'da96a7' corresponds to this specific threat profile, aiding tracking efforts. This domain is currently categorized as under investigation with an active status, meaning the threat is ongoing but not yet fully validated. No immediate remediation has been applied by major browsers or security vendors, leaving users vulnerable to potential exploitation. Given the low detection rate and lack of blocklist inclusion, PhishDestroy recommends exercising extreme caution when encountering this domain or any associated links. Users should verify the domain’s legitimacy through PhishDestroy before engaging with it, and consider blocking traffic to this IP range as a precautionary measure. Remaining risk is assessed as moderate due to the unconfirmed payload but high potential for harm if the domain evolves into a full-scale phishing or drainer operation. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 172.66.45.31 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/bd5da86e-ff27-4a65-a325-eac1a4ba02dd - PhishDestroy: https://phishdestroy.io/domain/io-brige-terzr.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/io-brige-terzr.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/io-brige-terzr.pages.dev/ Last updated: 2026-03-30