# apoieaparecida.com — SUSPICIOUS > PhishDestroy identifies apoieaparecida.com as a fake charity phishing site hosted on 104.21.72.187. Check the full report. ## Summary PhishDestroy identifies apoieaparecida.com as a fake charity phishing site actively luring victims under the guise of supporting a religious cause. This domain mimics legitimate donation portals to trick users into entering payment details or personal information, which threat actors then harvest for fraudulent transactions or identity theft. The page is designed to appear credible at first glance, often using emotional triggers such as religious themes or urgent appeals to bypass user skepticism and prompt hasty actions. Based on seed 526543, this campaign is currently under investigation but remains active as of the latest scan. This domain was flagged by PhishDestroy after rigorous analysis revealed critical red flags. apoieaparecida.com resolves to IP address 104.21.72.187 and was registered on March 28, 2026, through NICENIC INTERNATIONAL GROUP CO., LIMITED. Despite its recent creation, the domain already hosts a phishing page equipped with a valid Let’s Encrypt SSL certificate, which may further deceive visitors into believing it is trustworthy. Notably, VirusTotal currently shows 0 out of 95 detection engines flagging the domain, indicating it evades most automated scanners—though this does not imply safety. The combination of a newly registered domain, low detection rate, and active hosting suggests a rapidly evolving threat likely operated by opportunistic cybercriminals. If you have visited apoieaparecida.com, take immediate precautions. First, do not enter any personal or financial information on the site. If you provided payment details, contact your bank or card issuer immediately to report potential fraud and request a card replacement or transaction reversal. Monitor your accounts closely for unauthorized charges over the next 60 days. Run a full antivirus scan on your device to check for malware, as some phishing sites may deliver payloads like keyloggers or trojans. Consider changing passwords for critical accounts—especially email, banking, and social media—from a different, trusted device. Report the domain to your email provider and local cybercrime units to help disrupt the campaign. Stay vigilant: fake charity pages often reappear under slightly altered domains, so verify any donation request through official, verified channels before acting. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-03-28 22:37:47 - Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED - IP: 104.21.72.187 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/bbdc2189-357c-4585-aed7-be8d83e3a2d3 - PhishDestroy: https://phishdestroy.io/domain/apoieaparecida.com/ - LLM endpoint: https://phishdestroy.io/domain/apoieaparecida.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/apoieaparecida.com/ Last updated: 2026-03-31