# ankit-2404.github.io — MALICIOUS

> ankit-2404.github.io is a recently flagged social engineering phishing site. 15/95 security vendors detect it. Do not enter credentials or download files.

## Summary
PhishDestroy identifies ankit-2404.github.io as a high-risk generic phishing domain actively engaged in credential theft and fraudulent user interaction. This GitHub-hosted page poses a significant threat to visitors by leveraging deceptive content to impersonate legitimate services, harvest login credentials, or deliver malware. The domain is currently live and has been confirmed malicious by multiple independent security engines, making it unsafe for any form of interaction.  

This domain was flagged by 15 out of 95 VirusTotal security vendors and is explicitly blocked by Google Safe Browsing under the SOCIAL_ENGINEERING category. It resolves to IP address 185.199.111.153 and uses a valid Let’s Encrypt SSL certificate to appear trustworthy. Registered through GitHub, Inc., it operates under the assumption of trust associated with GitHub Pages, thereby increasing its efficacy in deceiving users. The combination of low trust scores across multiple platforms, a clean IP reputation that may be temporarily clean due to fast-flux rotation, and active exploitation for social engineering attacks elevates the risk profile to HIGH.  

Users must avoid accessing ankit-2404.github.io entirely. Do not click on any links, submit credentials, or download files from this domain. If you have already interacted with the site, immediately change any shared passwords, enable multi-factor authentication on relevant accounts, and scan your device with updated antivirus software. Report the domain to your IT security team and file abuse reports with GitHub and security vendors to help disrupt ongoing campaigns. Organizations should block both the domain and IP 185.199.111.153 at the network perimeter and monitor for related activity indicating lateral compromise or data exfiltration.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: GitHub, Inc.
- IP: 185.199.111.153

## Detection Status
- VirusTotal: 15 vendors flagged
- Google Safe Browsing: FLAGGED
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/4270d3fb-f010-4ee9-9551-3a01d4f44b02
- PhishDestroy: https://phishdestroy.io/domain/ankit-2404.github.io/
- LLM endpoint: https://phishdestroy.io/domain/ankit-2404.github.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ankit-2404.github.io/
Last updated: 2026-03-29