# metamzklgun.gitbook.io — MALICIOUS

> metamzklgun.gitbook.io is an active credential theft site flagged by 5 of 95 VirusTotal vendors. Users should avoid interaction and report suspicious links.

## Summary
The domain metamzklgun.gitbook.io is identified as an active credential theft site, posing a significant risk to users attempting to enter sensitive login information. This campaign targets victims with the intent to harvest credentials rather than leveraging brand impersonation or crypto drain techniques.

This domain resolves to the IP address 172.64.147.209 and is registered through Cloudflare, Inc. It was created on March 30, 2014. Security analysis from VirusTotal reveals that 5 out of 95 vendors flag this domain as malicious, indicating a moderate detection rate. The SSL certificate is issued by Google Trust Services, which may lend false legitimacy to the site. There is no explicit blocklist count provided, but the elevated risk classification underscores the threat.

Currently active, metamzklgun.gitbook.io should be treated as a high-risk domain. Users are strongly advised to avoid clicking links associated with this domain or submitting any personal credentials. Network administrators should consider blocking access at the firewall level and monitor for any related phishing attempts. Reporting the domain to security intelligence platforms enhances community defense against this credential theft operation.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2014-03-30 06:09:09
- Registrar: Cloudflare, Inc
- IP: 172.64.147.209

## Detection Status
- VirusTotal: 5 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/metamzklgun.gitbook.io
- PhishDestroy: https://phishdestroy.io/domain/metamzklgun.gitbook.io/
- LLM endpoint: https://phishdestroy.io/domain/metamzklgun.gitbook.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/metamzklgun.gitbook.io/
Last updated: 2026-04-08