# avilom.net — SUSPICIOUS

> avilom.net is a recently registered domain (April 28, 2025) posing as a generic phishing site, currently undetected on VirusTotal.

## Summary
PhishDestroy identifies avilom.net as an active generic phishing domain under investigation for potential cryptocurrency drainer activity, with a high-risk profile based on recent domain registration and infrastructure characteristics.


Domain avilom.net exhibits high-risk indicators, including a generic_phishing threat type, unflagged status on VirusTotal (0/95 detections as of seed 0eb1c3), and a recently created domain (April 28, 2025). The domain resolves to IP 190.123.44.82, registered through ENOM, INC., and secured with a Let's Encrypt SSL certificate. No specific brand impersonation or drainer kit has been confirmed at this stage, but the absence of detections suggests emerging or low-signature malicious activity.


This domain poses an active threat due to its recent registration and undetected status on VirusTotal (0/95). Technical indicators include registration through ENOM, INC., a Let's Encrypt SSL certificate, and resolution to IP 190.123.44.82. The current status is active, with no blocklist entries reported. Immediate actions include blocking the domain and IP at the network perimeter, monitoring for related infrastructure, and escalating to incident response teams. Remaining risk is high due to the lack of detections and recent creation date, warranting heightened vigilance from security teams and users.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2025-04-28 14:29:18
- Registrar: ENOM, INC.
- IP: 190.123.44.82

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/e5d66a2b-2d49-46cc-9e36-0484c46ddab0
- PhishDestroy: https://phishdestroy.io/domain/avilom.net/
- LLM endpoint: https://phishdestroy.io/domain/avilom.net/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/avilom.net/
Last updated: 2026-04-12