# earn-plasma-front.pages.dev — SUSPICIOUS > Plasma reward phishing domain earn-plasma-front.pages.dev has 0/95 VirusTotal detections. Check the full report. ## Summary PhishDestroy identifies the active phishing domain earn-plasma-front.pages.dev as luring victims with false plasma donation rewards. This fraudulent site poses as a plasma-earning platform while harvesting personal and banking data. Visitors are prompted to enter payment card information under the guise of cashing out earnings, risking direct financial theft. The page uses Cloudflare’s infrastructure (AS13335) and a Google Trust Services SSL certificate to appear legitimate, but no plasma reward programs operate through Cloudflare Pages subdomains. This setup is a hallmark of modern credential-harvesting campaigns targeting health-conscious or financially vulnerable users. Early detection remains critical, as current antivirus detection stands at 0 detections out of 95 scanners on VirusTotal as of the latest scan. This domain was flagged by PhishDestroy after being registered via Cloudflare, Inc. on April 2, 2025. The site resolves to IP 188.114.96.3, hosted within Cloudflare’s data center network. Despite its recent creation, the domain has already been weaponized with a valid SSL certificate issued by Google Trust Services, increasing its credibility among unsuspecting users. The complete lack of detections (0/95) suggests it is either very new or employs evasion tactics such as rapid domain rotation or cloaking based on geolocation or user-agent. Technical analysis confirms the use of Cloudflare Pages, a legitimate service abused to deploy phishing kits quickly and anonymously. The domain name itself mimics legitimate plasma programs, using a hyphenated prefix ‘earn-plasma-front’ to appear official while avoiding trademark violations. If you visited earn-plasma-front.pages.dev, stop using any payment cards entered and contact your bank immediately to report potential fraud. Do not log in or provide additional personal information. Clear your browser cache and cookies, then run a full antivirus scan. Report the domain to your bank, local cybercrime units, and PhishDestroy through the official reporting portal. Monitor bank statements for unauthorized transactions for at least 90 days. Consider enabling transaction alerts and freezing less-used cards. This domain is under active investigation, and takedown efforts are ongoing. Share this warning with others who may have seen or clicked the link. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 188.114.96.3 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/earn-plasma-front.pages.dev - PhishDestroy: https://phishdestroy.io/domain/earn-plasma-front.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/earn-plasma-front.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/earn-plasma-front.pages.dev/ Last updated: 2026-04-04