# 0a0zo7.uesbnb.cc — SUSPICIOUS

> 0a0zo7.uesbnb.cc is a low-risk phishing domain currently offline. Avoid interaction and verify URLs before proceeding online.

## Summary
PhishDestroy identifies 0a0zo7.uesbnb.cc as a generic phishing domain associated with the page titled "UBNB." Although classified with a low risk level, phishing threats like this remain significant as they attempt to deceive users into divulging sensitive data or credentials. Vigilance is essential because even low-risk phishing sites can lead to compromised personal information or financial loss.

The domain 0a0zo7.uesbnb.cc was registered on March 11, 2026, through Dominet (HK) Limited, with an IP address resolving to 188.114.97.3. It currently appears on one security blocklist but has been taken offline, reducing immediate threat exposure. VirusTotal analysis shows minimal detection with only 2 out of 95 security vendors flagging the domain, indicating limited but non-negligible suspicion. This infrastructure data suggests a short-lived phishing campaign that was identified and disrupted promptly.

Users are advised to avoid visiting or interacting with this domain. If you encounter suspicious links or unsolicited communications referencing "UBNB" or this domain, refrain from clicking and report them to your security team or service provider. Maintaining updated antivirus software and using URL filtering tools can add layers of protection against such phishing attempts. PhishDestroy continues to monitor related infrastructure for emerging threats and will update assessments as new intelligence becomes available.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: dead (HTTP 403)
- Page title: UBNB

## Domain Intelligence
- Registered: 2026-03-11 19:07:01
- Registrar: Dominet (HK) Limited
- Country: HK
- IP: 188.114.97.3
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["courtney.ns.cloudflare.com", "james.ns.cloudflare.com"]
- SSL Issuer: Let's Encrypt / E8

## Detection Status
- VirusTotal: 2 vendors flagged
  Vendors: ["Forcepoint ThreatSeeker", "SOCRadar"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ce6a3-c1c9-74de-8629-e6c3f356b5e6.png
- PhishDestroy: https://phishdestroy.io/domain/0a0zo7.uesbnb.cc/
- LLM endpoint: https://phishdestroy.io/domain/0a0zo7.uesbnb.cc/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/0a0zo7.uesbnb.cc/
Last updated: 2026-03-19