# king-metmsk-login.pages.dev — MALICIOUS

> king-metmsk-login.pages.dev is a phishing domain targeting user credentials. Avoid interaction and verify site authenticity before sharing info.

## Summary
PhishDestroy classifies king-metmsk-login.pages.dev as a high-risk credential phishing threat designed to capture sensitive login information. This domain poses a significant danger to users attempting to access purported services.

The domain was created recently on February 21, 2026, and was registered via Cloudflare, Inc. It resolved to IP 172.66.47.56 and was flagged on three security blocklists. VirusTotal identified it as malicious by 15 out of 95 security vendors. The page title displayed was "Suspected phishing site | Cloudflare," confirming its fraudulent intent.

Currently, the domain is offline, mitigating immediate risk. Users are advised to avoid engaging with this URL and to report any suspicious activity. PhishDestroy recommends maintaining updated security solutions and exercising caution when entering credentials online.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.47.56
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["chad.ns.cloudflare.com", "dara.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 15 vendors flagged
  Vendors: ["ADMINUSLabs", "ChainPatrol", "Criminal IP", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Kaspersky", "Lionic", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019a6fc9-0c7e-7648-a555-33e0ceaa2aef.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/10941a4e-dd92-4726-97e8-f14c14a57596
- PhishDestroy: https://phishdestroy.io/domain/king-metmsk-login.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/king-metmsk-login.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/king-metmsk-login.pages.dev/
Last updated: 2026-03-19