# meatmusklogin.gitbook.io — MALICIOUS

> High-risk phishing site meatmusklogin.gitbook.io targets MetaMask users. Stay alert and avoid entering credentials. Verify URLs before login.

## Summary
PhishDestroy identifies meatmusklogin.gitbook.io as a credential phishing domain impersonating the MetaMask login portal. Classified with a high risk level due to its intent to steal users' sensitive login information, this domain mimics official branding to deceive victims.

Technical analysis reveals the domain was registered recently on March 9, 2026, via Cloudflare, Inc., and resolved to an IP address (172.64.147.209) consistent with malicious infrastructure. Multiple security blocklists have flagged this domain, and VirusTotal reports 14 out of 95 vendors detecting suspicious activity related to it. The Gridinsoft trust score of 0/100 further confirms its untrustworthiness.

Currently, meatmusklogin.gitbook.io is offline following takedown actions to disrupt its operations. Users are advised to remain vigilant against similar phishing attempts and always verify domain authenticity before submitting credentials. PhishDestroy continues monitoring related threats and encourages reporting suspicious sites promptly.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Met𝚊Mãsk® - Login - Sign in* | US

## Domain Intelligence
- Registered: 2026-03-09 01:07:01
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.64.147.209
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: dahlia.ns.cloudflare.com hugh.ns.cloudflare.com
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Emsisoft", "Fortinet", "G-Data", "Kaspersky", "Lionic", "Netcraft", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "MetaMask"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ccffa-7e3a-76ca-bac0-e78bcb705ca5.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/72f1c51a-7069-4a25-a9a1-c8e263e62702
- Wayback Machine: https://web.archive.org/web/https://meatmusklogin.gitbook.io
- PhishDestroy: https://phishdestroy.io/domain/meatmusklogin.gitbook.io/
- LLM endpoint: https://phishdestroy.io/domain/meatmusklogin.gitbook.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/meatmusklogin.gitbook.io/
Last updated: 2026-03-19