# meta-wallet-io.pages.dev — MALICIOUS

> Avoid meta-wallet-io.pages.dev, a high-risk crypto drainer phishing site flagged for social engineering. The domain is offline but remains a cautionary example.

## Summary
PhishDestroy identifies the domain meta-wallet-io.pages.dev as a high-risk crypto drainer phishing site aimed at stealing cryptocurrency assets. This type of threat is particularly dangerous due to the irreversible nature of crypto transactions and the potential for significant financial loss. The domain was flagged by Google Safe Browsing for social engineering attacks, indicating users could be tricked into revealing sensitive wallet credentials or signing fraudulent transactions. Due to its intent to drain crypto wallets, this domain represents a critical threat in the cryptocurrency ecosystem.

The infrastructure behind meta-wallet-io.pages.dev involved hosting through Cloudflare, Inc., with the domain resolving to IP address 172.66.44.250. It was created recently on February 21, 2026, and despite its short lifespan, it appeared on three different security blocklists. VirusTotal analysis exhibits detection by 14 out of 95 security vendors, confirming widespread recognition of its malicious nature. The domain has since been taken offline and is currently displaying a Cloudflare warning page, mitigating further risk but leaving behind a notable footprint as a phishing vector.

Users are strongly advised to avoid interacting with this domain and any related links or emails. Individuals engaged in cryptocurrency activities should review their wallet security measures and ensure no credentials have been compromised. Organizations should update their phishing filters to include this domain and educate users about the risks of social engineering in the crypto space. Despite its current offline status, phishing tactics evolve quickly, so ongoing vigilance remains essential.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.44.250
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["oswald.ns.cloudflare.com", "izabella.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["ADMINUSLabs", "ChainPatrol", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Fortinet", "G-Data", "Google Safebrowsing", "Kaspersky", "Lionic", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: FLAGGED
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019b3333-d711-7619-be5e-2f1e832944b5.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/78de8d12-1da7-49f8-99a5-7d4ad174ad68
- PhishDestroy: https://phishdestroy.io/domain/meta-wallet-io.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/meta-wallet-io.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/meta-wallet-io.pages.dev/
Last updated: 2026-03-19