# aliexpress-usa.com — SUSPICIOUS

> aliexpress-usa.com poses a phishing risk mimicking Aliexpress. Stay vigilant against scams using this active domain.

## Summary
PhishDestroy has identified aliexpress-usa.com as a generic phishing domain targeting users by impersonating the popular Aliexpress brand. The website presents itself as "Aliexpress USA - Official Site Partner in US Dollars," attempting to deceive victims into trusting the fraudulent platform. This domain is classified as low-risk phishing but remains a potential vector for credential theft or financial fraud.

The domain aliexpress-usa.com was registered recently on March 11, 2026, via Global Domain Group LLC, a registrar sometimes associated with suspicious registrations. Its DNS resolves to the IP address 195.123.227.24, which has appeared on three separate security blocklists, indicating prior malicious activity or association. VirusTotal analysis reports only 1 out of 95 security engines flagging this domain, suggesting it remains under the radar of many detection systems. The phishing infrastructure appears to be in an early but active stage, with deceptive branding and IP reputation concerns.

Currently, aliexpress-usa.com remains active and operational, posing an ongoing threat to unsuspecting users. PhishDestroy recommends heightened caution when interacting with domains mimicking well-known e-commerce sites, especially those with recent creation dates and suspicious hosting. Continued monitoring and blocking efforts by security vendors are essential to mitigate risk. Users should verify URLs carefully and avoid submitting personal information on untrusted platforms like this one.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: alive (HTTP 200)
- Page title: Aliexpress USA - Official Site Partner in US Dollars

## Domain Intelligence
- Registered: 2026-03-11 15:07:01
- Registrar: Global Domain Group LLC
- Country: US
- IP: 195.123.227.24
- IP Country: BG
- IP City: Sofia
- IP Org: AS59729 GREEN FLOID LLC
- Nameservers: ["ns1.h107.hvosting.ua", "ns2.h107.hvosting.ua"]
- SSL Issuer: Let's Encrypt / R13

## Detection Status
- VirusTotal: 1 vendors flagged
  Vendors: ["SOCRadar"]
- Google Safe Browsing: clean
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ceb91-e7bf-75e8-98c8-76bdce16530e.png
- PhishDestroy: https://phishdestroy.io/domain/aliexpress-usa.com/
- LLM endpoint: https://phishdestroy.io/domain/aliexpress-usa.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/aliexpress-usa.com/
Last updated: 2026-03-19