# corridadodesconto.site — MALICIOUS > corridadodesconto.site is a confirmed generic phishing domain posing as discount offers. Flagged by 5/95 VirusTotal vendors, users should avoid clicking links. ## Summary PhishDestroy identifies corridadodesconto.site as an active generic phishing domain with an elevated risk level. This domain masquerades as a legitimate discount or coupon site to deceive users into disclosing sensitive information such as login credentials, payment details, or personal data. The primary threat posed by corridadodesconto.site is credential harvesting and financial fraud, leveraging social engineering tactics to exploit user trust. This domain was flagged by 5 out of 95 VirusTotal security vendors, indicating a significant but not universal consensus on its malicious nature. It resolves to IP address 187.77.62.110 and is registered through HOSTINGER operations, UAB. The domain utilizes a Let's Encrypt SSL certificate, which may falsely imply legitimacy to unsuspecting users. Registered on March 21, 2026, this is a relatively new domain, which is a common tactic among threat actors to evade established blocklists and detection mechanisms. The low flagging ratio on VirusTotal suggests that broader detection and mitigation efforts may still be in development or limited in scope. Users should avoid interacting with corridadodesconto.site entirely, including clicking any links or providing any information. If you have already visited the domain, do not enter any credentials or payment details and monitor your accounts for unusual activity. Report the domain to your security team or relevant authorities, such as your country's cybercrime unit or organizations like the Anti-Phishing Working Group (APWG). Organizations should ensure their DNS filtering and endpoint protection solutions are updated to block access to this domain and its associated IP address. Additionally, user education on recognizing phishing tactics, such as verifying domain legitimacy and scrutinizing unexpected discount offers, is critical to preventing successful attacks. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-03-21 03:38:39 - Registrar: HOSTINGER operations, UAB - IP: 187.77.62.110 ## Detection Status - VirusTotal: 5 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/59d9f30e-ddc8-46af-80a6-5a0d1282f814 - PhishDestroy: https://phishdestroy.io/domain/corridadodesconto.site/ - LLM endpoint: https://phishdestroy.io/domain/corridadodesconto.site/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/corridadodesconto.site/ Last updated: 2026-03-22