# accountstatement231.weebly.com — MALICIOUS

> accountstatement231.weebly.com is a confirmed phishing site aiming to steal credentials. Avoid this domain and never enter personal data on it.

## Summary
PhishDestroy identifies accountstatement231.weebly.com as a high-risk credential phishing domain designed to deceive users by impersonating a legitimate account statement service. The site’s page title, "MY SITE - statement of account," aims to lure victims into submitting sensitive login information under the guise of accessing account records. This classification is based on the domain’s behavior and reported security incidents.

Technical analysis reveals that the domain was registered on March 29, 2006, through Safenames Ltd, and resolved to IP address 74.115.51.8. VirusTotal scans flagged the domain by 18 out of 95 security vendors, indicating significant suspicion from multiple threat intelligence sources. Furthermore, it appears on one known security blocklist, reinforcing its malicious intent. The hosting infrastructure is linked to Weebly’s platform, which has been abused to host this phishing page.

Currently, accountstatement231.weebly.com is offline, mitigating risks for users. PhishDestroy recommends users avoid this domain entirely and exercise caution when encountering similar deceptive URLs. Organizations should update their blocklists and educate end-users about phishing tactics involving fake account statements. Continued monitoring is advised to detect any future reactivation or related phishing campaigns.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 404)
- Page title: MY SITE - statement of account

## Domain Intelligence
- Registered: 2006-03-29 00:25:07
- Registrar: Safenames Ltd
- Country: GB
- IP: 74.115.51.8
- IP Country: US
- IP City: Oakland
- IP Org: AS27647 Weebly, Inc.
- Nameservers: ns-123.awsdns-15.com ns-1500.awsdns-59.org ns-1797.awsdns-32.co.uk ns-646.awsdns-16.net
- SSL Issuer: Let's Encrypt / E8

## Detection Status
- VirusTotal: 18 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Emsisoft", "Fortinet", "G-Data", "Gridinsoft", "Kaspersky", "Lionic", "Netcraft", "OpenPhish", "Phishtank", "Sophos", "Trustwave", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cd79a-e7be-70d8-b34f-94993c5de88f.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/82be7ab8-81c6-47a6-b4b7-879017790d9d
- PhishDestroy: https://phishdestroy.io/domain/accountstatement231.weebly.com/
- LLM endpoint: https://phishdestroy.io/domain/accountstatement231.weebly.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/accountstatement231.weebly.com/
Last updated: 2026-03-19