# app-doc-uphold-en.pages.dev — MALICIOUS

> Stay safe from phishing threats. The domain app-doc-uphold-en.pages.dev is linked to scams and is now offline. Avoid clicking suspicious links.

## Summary
PhishDestroy identifies app-doc-uphold-en.pages.dev as a high-risk generic phishing domain posing significant threats to users by attempting to steal sensitive information through social engineering tactics. This domain is flagged for impersonating legitimate services, putting users at risk of credential theft and financial fraud.

The domain was registered through Cloudflare, Inc. on February 21, 2026, and resolved to IP address 172.66.45.4. It was detected on three security blocklists and flagged by Google Safe Browsing for social engineering. VirusTotal analysis showed 13 out of 95 security vendors identifying malicious activity associated with this domain. Currently, the domain is offline, reducing immediate risk but users should remain vigilant.

Users are advised to avoid interacting with any communications or links referencing app-doc-uphold-en.pages.dev. Always verify URLs before entering personal data, and rely on official websites and apps. If users suspect they have engaged with this phishing domain, they should monitor their accounts closely and update their passwords immediately. Staying informed and cautious is crucial to prevent phishing attacks.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.45.4
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["wanda.ns.cloudflare.com", "jaime.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 13 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Fortinet", "G-Data", "Google Safebrowsing", "Kaspersky", "Lionic", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: FLAGGED
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cec9c-0f4b-72eb-ac9d-2ea90c448dac.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/ae6faa9a-937b-4144-9ffa-f1ceb708735c
- PhishDestroy: https://phishdestroy.io/domain/app-doc-uphold-en.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/app-doc-uphold-en.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/app-doc-uphold-en.pages.dev/
Last updated: 2026-03-19