# casebetlle.com — SUSPICIOUS > casebetlle.com poses as a payment portal in an active phishing campaign. Flagged by 2 of 95 VirusTotal vendors, it resolves to 188.114.97. ## Summary casebetlle.com is an active phishing domain impersonating a generic payment portal. The domain is currently classified under the threat type generic_phishing with an elevated risk level. Security monitoring services such as PhishDestroy have identified this domain as part of an ongoing campaign targeting unsuspecting users. PhishDestroy identifies casebetlle.com as a confirmed phishing threat. This domain was flagged by 2 of 95 VirusTotal vendors, indicating limited but confirmed malicious activity. It resolves to IP address 188.114.97.3 and is registered through NICENIC INTERNATIONAL GROUP CO., LIMITED. The domain was created on April 22, 2025, and currently appears on 1 security blocklist. Despite having an SSL certificate issued by Google Trust Services, the low detection rate and recent creation date suggest a rapidly evolving threat with moderate evasion techniques. The domain remains active and poses a tangible risk to users who may encounter it via email, messaging platforms, or malicious advertisements. PhishDestroy strongly advises users to avoid interacting with casebetlle.com or any associated links. Organizations and individuals should update their threat intelligence feeds to include this domain and block it at the network and endpoint levels. Suspected exposure should prompt immediate password resets for any accounts potentially accessed through this domain and a security review of affected systems. Always verify payment or login portals by navigating directly to the official website rather than clicking embedded links. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2025-04-22 16:06:58 - Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED - IP: 188.114.97.3 ## Detection Status - VirusTotal: 2 vendors flagged - Google Safe Browsing: clean - Blocklists: 1 hits Lists: ["PhishDestroy"] ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/4ee44b0d-57ee-4158-a6f8-e55ecaeb0178 - PhishDestroy: https://phishdestroy.io/domain/casebetlle.com/ - LLM endpoint: https://phishdestroy.io/domain/casebetlle.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/casebetlle.com/ Last updated: 2026-03-27