# easybank-barc9090.up.railway.app — MALICIOUS

> easybank-barc9090.up.railway.app is a banking phishing domain impersonating Easybank. 6/95 VirusTotal vendors flag this credential theft site.

## Summary
PhishDestroy identifies easybank-barc9090.up.railway.app as an active banking phishing domain engaged in credential theft. This Railway.app-hosted site mimics Easybank branding to harvest login credentials and sensitive financial data.

This domain was flagged by 6 of 95 VirusTotal security vendors, indicating elevated risk. It resolves to IP 151.101.2.15 and operates under a Let's Encrypt SSL certificate, enhancing its authenticity to potential victims. The infrastructure leverages Railway.app's platform, which has known vulnerabilities for malicious deployments.

To mitigate risk, avoid interacting with this domain entirely. Users should verify banking URLs directly through official channels and report suspicious links to their financial institutions. Enable multi-factor authentication on all banking accounts as an additional layer of security against credential theft operations like this one.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: REGISTRAR_NOT_FOUND
- IP: 151.101.2.15

## Detection Status
- VirusTotal: 6 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/easybank-barc9090.up.railway.app
- PhishDestroy: https://phishdestroy.io/domain/easybank-barc9090.up.railway.app/
- LLM endpoint: https://phishdestroy.io/domain/easybank-barc9090.up.railway.app/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/easybank-barc9090.up.railway.app/
Last updated: 2026-04-08