# amn1704.github.io — MALICIOUS > PhishDestroy identifies amn1704.github.io as a phishing site hosted on GitHub Pages, flagged by 6/95 VirusTotal vendors for credential theft. ## Summary PhishDestroy has identified amn1704.github.io as an active phishing domain designed to harvest sensitive user credentials. This site mimics legitimate login portals to trick users into disclosing usernames, passwords, or financial information. The threat is elevated due to its active status, multiple detection sources, and hosting on a platform often leveraged for quick deployment of malicious pages. Users are strongly advised to avoid interacting with this domain entirely. This domain was flagged by 6 out of 95 VirusTotal security vendors, indicating a significant, but not universal, consensus on its malicious nature. It resolves to IP 185.199.109.153 and is registered through GitHub, Inc., leveraging the GitHub Pages service to host its content. Notably, it is blocked by OpenPhish and appears on one additional security blocklist, reinforcing its reputation as a known threat. The use of a Let’s Encrypt SSL certificate suggests an attempt to appear legitimate, as users may associate HTTPS with safety. If you have visited amn1704.github.io, particularly if you entered any login credentials or personal information, immediately change the passwords for those accounts and enable multi-factor authentication where available. Scan your device for malware using reputable security software, as some phishing sites may deploy additional payloads. Report the incident to your organization’s security team if this occurred on a work device, and consider monitoring your accounts for unusual activity. Avoid clicking on any links or downloading files from this domain in the future, and warn others who may encounter it. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: GitHub, Inc. - IP: 185.199.109.153 ## Detection Status - VirusTotal: 6 vendors flagged - Google Safe Browsing: clean - Blocklists: 1 hits Lists: ["OpenPhish"] ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/amn1704.github.io - PhishDestroy: https://phishdestroy.io/domain/amn1704.github.io/ - LLM endpoint: https://phishdestroy.io/domain/amn1704.github.io/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/amn1704.github.io/ Last updated: 2026-04-02