# aktifkaan-paylattersx.resmi-cxh4.xyz — MALICIOUS

> The domain aktifkaan-paylattersx.resmi-cxh4.xyz is linked to high-risk phishing. Avoid interaction and verify sources before sharing info.

## Summary
PhishDestroy identifies aktifkaan-paylattersx.resmi-cxh4.xyz as an active high-risk generic phishing domain. This site attempts to deceive users into revealing sensitive data, posing a significant threat to personal and financial security. It was registered recently, suggesting it is part of ongoing malicious campaigns.

This domain was created on April 29, 2025, and is registered through Dynadot LLC. It resolves to the IP address 188.114.96.3. VirusTotal analysis indicates that 14 out of 95 security vendors flag this domain for suspicious activity. Such detection rates reinforce the likelihood of phishing activity, consistent with its behavior and domain characteristics.

Currently, the domain remains active and should be treated as a high-risk source. Users are strongly advised to avoid clicking on any links or submitting personal information on this site. Organizations should update blocklists and monitor for related phishing attempts. Continued vigilance and reporting of suspicious activity involving this domain are essential to mitigate potential harm.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 0)
- Page title: DANA - Apa pun transaksinya selalu ada DANA

## Domain Intelligence
- Registered: 2026-03-04 15:07:01
- Registrar: Dynadot LLC
- Country: US
- IP: 188.114.96.3
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: dylan.ns.cloudflare.com kim.ns.cloudflare.com
- SSL Issuer: none

## Detection Status
- VirusTotal: 15 vendors flagged
  Vendors: ["ADMINUSLabs", "CRDF", "CyRadar", "Emsisoft", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Gridinsoft", "Lionic", "Netcraft", "OpenPhish", "SOCRadar", "Sophos", "Trustwave", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://i.ibb.co/Y442hGzW/60d47907887f.png
- Cloudflare Radar: https://radar.cloudflare.com/domains/aktifkaan-paylattersx.resmi-cxh4.xyz
- PhishDestroy: https://phishdestroy.io/domain/aktifkaan-paylattersx.resmi-cxh4.xyz/
- LLM endpoint: https://phishdestroy.io/domain/aktifkaan-paylattersx.resmi-cxh4.xyz/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/aktifkaan-paylattersx.resmi-cxh4.xyz/
Last updated: 2026-03-19