# dimoopoo.ru — MALICIOUS

> Dimoopoo.ru is a credential phishing domain active since March 2026, flagged by 17/95 VirusTotal scanners and two blocklists. Check the full report.

## Summary
PhishDestroy identifies dimoopoo.ru as a live credential phishing domain actively harvesting login credentials from unsuspecting users. Security telemetry confirms the domain is weaponized in real-time campaigns designed to trick victims into surrendering sensitive account information. Recent intelligence shows the domain was registered on March 24, 2026—well within the typical 90-day window for new phishing infrastructure—indicating this is a recently deployed attack vector rather than an aged threat.  This domain was flagged by 17 of 95 participating VirusTotal security vendors, revealing elevated malicious intent beyond generic detection noise. It resolves to IP address 87.120.187.146 and was registered through R01-RU, a registrar known for minimal identity verification. The threat has already been blocked by two major blocklists: OpenPhish and PhishingArmy. Of particular concern, the domain holds a valid Let’s Encrypt SSL certificate, which enhances its credibility and increases the likelihood of user deception by presenting a false sense of security.  If you visited dimoopoo.ru at any time, assume your credentials or personal data may have been compromised. Immediately change passwords for any accounts where you entered login details on this site. Run a full antivirus scan and monitor financial accounts for anomalies. Report any suspicious activity to your IT team or cybersecurity provider. Avoid interaction with the domain entirely to prevent further exposure.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-24 08:48:09
- Registrar: R01-RU
- IP: 87.120.187.146

## Detection Status
- VirusTotal: 17 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["OpenPhish", "PhishingArmy"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/dimoopoo.ru
- PhishDestroy: https://phishdestroy.io/domain/dimoopoo.ru/
- LLM endpoint: https://phishdestroy.io/domain/dimoopoo.ru/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/dimoopoo.ru/
Last updated: 2026-04-08