# metamask.io-airdrop.com — SUSPICIOUS

> Discover key insights on metamask.io-airdrop.com, a low-risk crypto drainer domain now offline. Learn about its threat profile and mitigation status.

## Summary
PhishDestroy identifies metamask.io-airdrop.com as a low-risk crypto drainer domain designed to target cryptocurrency holders by mimicking legitimate MetaMask airdrop services. This domain aimed to deceive users into divulging private keys or seed phrases, potentially resulting in unauthorized access to digital wallets and theft of assets.

The domain was registered on February 21, 2026, through Name SRS AB and appeared on one security blocklist. VirusTotal analysis flagged it with 2 out of 95 security vendors, indicating limited but credible detection. The domain's structure and naming convention were crafted to exploit user trust by leveraging a recognizable brand name combined with the term "airdrop," a common cryptocurrency promotional tactic.

Currently, metamask.io-airdrop.com is offline, effectively mitigating immediate risk. PhishDestroy recommends users remain vigilant about similar deceptive domains, verify URLs carefully before engaging with airdrop offers, and utilize updated security tools to prevent exposure to emerging threats.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: alive (HTTP 530)
- Scam type: Airdrop Scam
- Target brand: MetaMask

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Name SRS AB
- Country: SE
- IP: 104.21.80.60
- Nameservers: ["nora.ns.cloudflare.com", "toby.ns.cloudflare.com"]
- SSL Issuer: WE1

## Detection Status
- VirusTotal: 2 vendors flagged
  Vendors: ["ChainPatrol", "SOCRadar"]
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019a5315-a3f6-7272-99c4-38d91280aa23.png
- PhishDestroy: https://phishdestroy.io/domain/metamask.io-airdrop.com/
- LLM endpoint: https://phishdestroy.io/domain/metamask.io-airdrop.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/metamask.io-airdrop.com/
Last updated: 2026-03-19