# learn-login--metamsk.pages.dev — MALICIOUS

> learn-login--metamsk.pages.dev is flagged for phishing. Avoid entering credentials and verify site authenticity before proceeding.

## Summary
PhishDestroy identifies learn-login--metamsk.pages.dev as a high-risk credential phishing domain targeting users likely impersonating a popular crypto wallet service. The domain was designed to deceive users into submitting sensitive login information.

The domain was created on February 21, 2026, and resolved to IP 172.66.47.164. It was registered through Cloudflare, Inc. and appeared on three security blocklists. VirusTotal flagged the domain by 15 out of 95 security vendors, and Google Safe Browsing categorized it under social engineering threats.

Currently, the domain is offline and no longer serving malicious content. Users are advised to remain cautious, avoid visiting suspicious URLs, and report any credential compromise immediately.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.47.164
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["cris.ns.cloudflare.com", "elly.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 15 vendors flagged
  Vendors: ["ADMINUSLabs", "ChainPatrol", "alphaMountain.ai", "BitDefender", "CRDF", "CyRadar", "ESET", "Fortinet", "G-Data", "Google Safebrowsing", "Kaspersky", "Lionic", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: FLAGGED
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ca359-7464-73a1-ba96-d7471b0e3547.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/145c61bc-2d57-4504-b8aa-23b2c697894c
- PhishDestroy: https://phishdestroy.io/domain/learn-login--metamsk.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/learn-login--metamsk.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/learn-login--metamsk.pages.dev/
Last updated: 2026-03-19