[hey2022]

This doesn't even look like an elaborate phishing attempt. It's a pretty standard tactic:

1. make an email look legitimate

2. point to an unrelated scammer-owned domain

3. steal user's financial details (be that a wallet, visa card, bank account, etc).