# metamzklggan.gitbook.io — SUSPICIOUS

> PhishDestroy identifies metamzklggan.gitbook.io as a MetaMask phishing site created March 30, 2014. Check the full report.

## Summary
PhishDestroy identifies metamzklggan.gitbook.io as an active MetaMask credential phishing page designed to steal cryptocurrency wallet logins. The site mimics the official GitBook platform to deceive visitors into entering their MetaMask seed phrases or private keys, giving attackers full control over victims’ digital assets.  This domain was flagged with 0 detections out of 95 VirusTotal engines, registered through Cloudflare on March 30, 2014, and resolves to IP 104.18.40.47. It holds a valid SSL certificate issued by Google Trust Services, which attackers abuse to appear legitimate and evade browser warnings.  If you visited metamzklggan.gitbook.io, assume your MetaMask credentials or browser session may have been compromised. Disconnect any active wallet connections immediately, revoke session permissions via the official MetaMask interface, and transfer remaining funds to a new, secure wallet. Consider your seed phrase exposed and generate a new one only after ensuring your device is malware-free.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2014-03-30 06:09:09
- Registrar: Cloudflare, Inc
- IP: 104.18.40.47

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/metamzklggan.gitbook.io
- PhishDestroy: https://phishdestroy.io/domain/metamzklggan.gitbook.io/
- LLM endpoint: https://phishdestroy.io/domain/metamzklggan.gitbook.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/metamzklggan.gitbook.io/
Last updated: 2026-04-10