# berryherryport.com — SUSPICIOUS

> Stay safe online by avoiding berryherryport.com, a known phishing domain. Do not enter personal info and report suspicious sites promptly.

## Summary
PhishDestroy identifies berryherryport.com as a generic phishing domain posing a medium-level risk to users. The domain was created in April 2023 and is associated with phishing activities aimed at deceiving users into submitting sensitive information. Its presence on at least one security blocklist and inclusion in a threat intelligence pulse underline its malicious intent. Users should exercise caution and avoid interacting with this domain to prevent potential credential theft or fraud.

The domain was registered through the REGRU-RU registrar and resolves to the IPv6 address 2a06:98c1:3120::3. VirusTotal analysis reports that 4 out of 95 security vendors flagged berryherryport.com, indicating a moderate consensus on its malicious nature. The Scamadviser trust score is extremely low at 1 out of 100, further confirming the domain's untrustworthiness. AlienVault OTX also identifies the domain in one threat intelligence pulse, suggesting observed malicious activity linked to this site.

Currently, berryherryport.com has been taken offline, reducing immediate risks to users. Despite this, users and organizations should remain vigilant for possible domain resurrection or related phishing campaigns. It is recommended to continue blocking the domain on corporate networks and update local threat intelligence feeds. Users are advised not to visit the site or provide any personal information if encountered, and to report suspicious domains to trusted cybersecurity platforms such as PhishDestroy.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: dead (HTTP 403)

## Domain Intelligence
- Registered: 2023-04-16 03:01:20
- Expires: 2026-04-16 03:01:20
- Registrar: REGRU-RU
- Country: RU
- IP: 2a06:98c1:3120::3
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: gerald.ns.cloudflare.com marissa.ns.cloudflare.com
- SSL Issuer: none

## Detection Status
- VirusTotal: 4 vendors flagged
  Vendors: ["alphaMountain.ai", "Certego", "CyRadar", "SOCRadar"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019a6d78-b011-73bf-9082-df436dfd4b88.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/213188ab-b713-4ea8-84d2-72efb64e19b8
- PhishDestroy: https://phishdestroy.io/domain/berryherryport.com/
- LLM endpoint: https://phishdestroy.io/domain/berryherryport.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/berryherryport.com/
Last updated: 2026-03-19