# aubergine-astro.pages.dev — SUSPICIOUS

> aubergine-astro.pages.dev is a phishing domain hosting a generic phishing page. 1 of 95 VirusTotal vendors flagged it.

## Summary
PhishDestroy identifies aubergine-astro.pages.dev as hosting a generic phishing page designed to harvest user credentials or sensitive data. The domain does not mimic a specific brand or service, indicating opportunistic rather than targeted attacks. No evidence of a drainer kit or advanced obfuscation was detected in initial scans, suggesting reliance on social engineering rather than sophisticated malware delivery.  This domain was flagged by PhishDestroy with an elevated risk rating due to confirmed phishing activity. VirusTotal reports a detection ratio of 1 out of 95 security vendors, indicating low but non-zero recognition of its malicious nature. The domain is registered through Cloudflare, Inc. and resolves to IP address 188.114.96.3. The SSL certificate is issued by Google Trust Services, which may lend an air of legitimacy to unsuspecting users. The seed identifier 173c55 correlates this report to prior forensic analysis.  As of the latest scan, aubergine-astro.pages.dev remains active and accessible. Users are advised to block access to the domain at the network level and report it to relevant threat intelligence platforms. While the current risk is elevated, the lack of widespread detection and generic nature of the phishing page suggest limited operational scope. Remaining risk includes potential for continued use in opportunistic campaigns until further takedown or blacklisting occurs.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.96.3

## Detection Status
- VirusTotal: 1 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/5a062c1b-bf9a-475a-9cc3-094753b473d0
- PhishDestroy: https://phishdestroy.io/domain/aubergine-astro.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/aubergine-astro.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/aubergine-astro.pages.dev/
Last updated: 2026-03-26