# meteora.trade — MALICIOUS

> meteora.trade hosts a high-risk phishing scam mimicking an airdrop claim. Stay alert and avoid interacting with this active threat domain.

## Summary
PhishDestroy identifies meteora.trade as a high-risk phishing domain currently active and engaged in generic phishing activities. The site misleadingly offers a 'Claim Airdrop' page, aiming to deceive users into divulging sensitive information or credentials.

Supporting intelligence reveals meteora.trade was registered recently in February 2026 and is flagged by 12 out of 95 security vendors on VirusTotal. It appears in one AlienVault OTX threat pulse and is listed on a security blocklist, indicating corroborated malicious activity. The domain resolves to IP address 104.21.48.1, commonly associated with suspicious infrastructure.

Users and organizations should exercise caution and block access to meteora.trade to prevent exposure to phishing attempts. PhishDestroy continues to monitor the domain’s status, which remains active, urging proactive defensive measures to mitigate risk from this evolving phishing threat.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 530)
- Page title: Claim Airdrop - Meteora

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- IP: 104.21.48.1
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- SSL Issuer: WE1

## Detection Status
- VirusTotal: 12 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "Chong Lua Dao", "CyRadar", "Fortinet", "G-Data", "Kaspersky", "Lionic", "Seclookup", "SOCRadar", "Sophos"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/0199319f-96a0-77ab-b7bd-0fa65e5daf88.png
- PhishDestroy: https://phishdestroy.io/domain/meteora.trade/
- LLM endpoint: https://phishdestroy.io/domain/meteora.trade/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/meteora.trade/
Last updated: 2026-03-19