# mva.cool — SUSPICIOUS

> Caution: The domain mva.cool is linked to phishing activities. Currently offline, but stay vigilant and avoid any interactions with it.

## Summary
PhishDestroy identifies mva.cool as a low-risk generic phishing domain that posed potential threats by attempting to trick users into revealing sensitive information. Though its impact was limited, vigilance remains important.

The domain was registered recently on February 21, 2026, and appeared on two security blocklists. It was registered through a dead domain provider and flagged by one security vendor on VirusTotal. Currently, mva.cool has been taken offline.

Users should avoid clicking any links or providing personal information related to mva.cool. Maintaining updated security software and monitoring for suspicious emails or messages is recommended to stay protected.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: alive (HTTP 530)
- Page title: Heroes of Mavia | Build Your Base & Battle for RUBY

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- IP: 172.67.137.75
- SSL Issuer: GTS CA 1P5

## Detection Status
- VirusTotal: 1 vendors flagged
  Vendors: ["Emsisoft"]
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "Enkrypt"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/77ceb93b-8bc0-4b99-af51-aa169ef10601.png
- PhishDestroy: https://phishdestroy.io/domain/mva.cool/
- LLM endpoint: https://phishdestroy.io/domain/mva.cool/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/mva.cool/
Last updated: 2026-03-19