# meta-mapx-3ke.pages.dev — MALICIOUS

> Domain meta-mapx-3ke.pages.dev was flagged for phishing. Avoid interaction and maintain caution. The site is now offline to protect users.

## Summary
PhishDestroy identifies meta-mapx-3ke.pages.dev as a high-risk generic phishing domain. The site was designed to deceive users and capture sensitive information, representing a significant security threat. Due to its malicious intent, the domain's risk level is classified as high.

Supporting evidence includes the domain’s recent creation date on February 21, 2026, which is typical for phishing campaigns aiming to evade detection. The domain was registered through Cloudflare, Inc., a common registrar used by threat actors for anonymity. It resolves to IP address 172.66.44.56 and appeared on one security blocklist. VirusTotal analysis flagged the domain by 14 out of 95 security vendors, confirming its malicious nature. Additionally, the Gridinsoft trust score of 0/100 further indicates the domain’s untrustworthiness. The page title shown was "Suspected phishing site | Cloudflare," reinforcing its classification.

To mitigate risks, users should avoid visiting or interacting with meta-mapx-3ke.pages.dev. PhishDestroy notes that the domain is currently offline, limiting further exposure. Users are advised to maintain updated security measures and be cautious of unsolicited links resembling this domain. Organizations should continue monitoring for related phishing attempts leveraging similar infrastructure or naming conventions to prevent future compromise.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.44.56
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["jillian.ns.cloudflare.com", "ace.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["Criminal IP", "Bfore.Ai PreCrime", "BitDefender", "CyRadar", "ESET", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Kaspersky", "Lionic", "Phishing Database", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019b056b-77e1-737f-83e4-88858d914cc9.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/1b2b8acb-6b1f-4dcb-90d8-df79bdb21b2b
- PhishDestroy: https://phishdestroy.io/domain/meta-mapx-3ke.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/meta-mapx-3ke.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/meta-mapx-3ke.pages.dev/
Last updated: 2026-03-19