# mezoairdrop.xyz — SUSPICIOUS

> mezoairdrop.xyz poses a medium-risk crypto drainer threat. Stay cautious and avoid interacting with this offline domain.

## Summary
PhishDestroy identifies mezoairdrop.xyz as a suspicious domain linked to crypto draining activities. The website, titled 'Mezo Airdrop - Claim Your Tokens,' was designed to lure users into fraudulent token claims.

Technical indicators show that mezoairdrop.xyz was registered on October 14, 2025, via Ultahost, Inc. It appeared on three security blocklists and was flagged by multiple security vendors on VirusTotal. The domain resolved to IP address 198.18.0.211, a detail helpful for network filtering and blocking.

Currently, mezoairdrop.xyz is taken offline, reducing immediate risk. Users are advised to remain vigilant and avoid engaging with similar airdrop offers, as such domains often aim to drain crypto wallets. Continuous monitoring of related domains is recommended to prevent future threats.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: dead (HTTP 403)
- Scam type: Airdrop Scam
- Page title: Mezo Airdrop - Claim Your Tokens

## Domain Intelligence
- Registered: 2025-10-14 18:21:06
- Expires: 2026-10-14 23:59:59
- Registrar: Ultahost, Inc.
- Country: US
- IP: 45.12.2.67
- IP Country: UA
- IP City: Kyiv
- IP Org: AS6698 Virtual Systems LLC
- Nameservers: ns1.mezoairdrop.xyz ns2.mezoairdrop.xyz
- SSL Issuer: none

## Detection Status
- VirusTotal: 4 vendors flagged
  Vendors: ["alphaMountain.ai", "Chong Lua Dao", "CyRadar", "Forcepoint ThreatSeeker"]
- Google Safe Browsing: clean
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/0199e569-920f-718a-9a2d-b5e17f6707d6.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/4f609bab-5267-437e-a0e4-4edbaa2b6f2b
- Wayback Machine: https://web.archive.org/web/https://mezoairdrop.xyz
- PhishDestroy: https://phishdestroy.io/domain/mezoairdrop.xyz/
- LLM endpoint: https://phishdestroy.io/domain/mezoairdrop.xyz/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/mezoairdrop.xyz/
Last updated: 2026-03-19