# ansa1104.github.io — MALICIOUS

> PhishDestroy identifies ansa1104.github.io as a phishing site hosted on GitHub, with 15/95 VirusTotal detections.

## Summary
This domain poses a credential theft risk, leveraging GitHub’s trusted infrastructure to deceive visitors. ansa1104.github.io was flagged by 15 out of 95 security vendors on VirusTotal, indicating widespread suspicion of its legitimacy. Hosted on GitHub’s IP (185.199.108.153) and secured with a Let’s Encrypt certificate, it masquerades as a harmless page to harvest login credentials.


PhishDestroy’s analysis confirms this is a phishing site designed to trick users into submitting sensitive information. The domain’s rapid detection by 15% of VirusTotal’s vendors underscores its malicious nature, despite its GitHub hosting. Its SSL certificate adds a veneer of authenticity, making it harder for users to spot the deception.


If you visited this domain, avoid entering any personal or login details. Disconnect immediately and scan your device for malware. Report the domain to your IT team or via PhishDestroy’s portal using seed 7af8e3. Monitor accounts linked to this session for unauthorized activity—early detection is critical to mitigating credential theft.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: GitHub, Inc.
- IP: 185.199.108.153

## Detection Status
- VirusTotal: 15 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/849ef0b6-9579-4a39-87c4-629a09baf834
- PhishDestroy: https://phishdestroy.io/domain/ansa1104.github.io/
- LLM endpoint: https://phishdestroy.io/domain/ansa1104.github.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ansa1104.github.io/
Last updated: 2026-03-28