# bishesh204.github.io — MALICIOUS

> bishesh204.github.io hosts a fake login page. 16/95 vendors flag it as phishing. Check the full report.

## Summary
PhishDestroy identifies bishesh204.github.io as an active phishing domain serving a generic fake login page. No brand or drainer kit information is publicly available at this time. GitHub-hosted infrastructure is frequently abused for short-lived credential-harvesting campaigns.


Technical indicators confirm high risk: VirusTotal shows 16 out of 95 security vendors flagging the domain, while Google Safe Browsing classifies it under SOCIAL_ENGINEERING. The domain resolves to IP 185.199.108.153, uses a Let’s Encrypt SSL certificate, and is registered through GitHub, Inc. No creation date is published due to GitHub’s ephemeral page model.


Current status remains active with no observed takedown. Organizations should block the domain and IP at the network perimeter. Remaining risk is high due to continuous GitHub abuse and low detection coverage. Implement email filtering rules targeting the domain and monitor for credential dumps linked to harvested credentials.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: GitHub, Inc.
- IP: 185.199.108.153

## Detection Status
- VirusTotal: 16 vendors flagged
- Google Safe Browsing: FLAGGED
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/8aad6aba-5a85-4a02-a529-cd0c5214d674
- PhishDestroy: https://phishdestroy.io/domain/bishesh204.github.io/
- LLM endpoint: https://phishdestroy.io/domain/bishesh204.github.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/bishesh204.github.io/
Last updated: 2026-03-29