# duelbit.app — SUSPICIOUS

> duelbit.app is a sextortion phishing site flagged by 2/95 VirusTotal engines. Check the full report.

## Summary
PhishDestroy identifies duelbit.app as an active sextortion phishing domain with elevated risk, confirmed by multiple security vendors and domain intelligence sources.

This domain was flagged by 2 out of 95 VirusTotal security vendors as a sextortion phishing page, registered on April 08, 2026 through NICENIC INTERNATIONAL GROUP CO., LIMITED. The domain resolves to IP 188.114.97.3 and lacks a strong trust score, indicating recent creation and low legitimacy. No additional blocklist data was provided, but the low VT detection ratio suggests either evasion tactics or limited exposure.

Sextortion phishing typically involves fake threats to leak sensitive content unless payment is made. Users should avoid interacting with this domain, report it to their email or browser provider, and verify any claims through official channels. Organizations should flag 188.114.97.3 at the network level and update browser/email filters to block duelbit.app explicitly.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-04-08 19:21:20
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- IP: 188.114.97.3

## Detection Status
- VirusTotal: 2 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/duelbit.app
- PhishDestroy: https://phishdestroy.io/domain/duelbit.app/
- LLM endpoint: https://phishdestroy.io/domain/duelbit.app/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/duelbit.app/
Last updated: 2026-04-10