# echomusic.social — SUSPICIOUS

> echomusic.social linked to a social engineering phishing scam, flagged by 4 of 95 VirusTotal vendors. Check the full report.

## Summary
PhishDestroy identifies echomusic.social as an active social engineering phishing domain, currently impersonating the Echo Prototype platform. The threat is classified as elevated risk with confirmed malicious activity, as evidenced by blocks from MetaMask and SEAL security solutions.


This domain was flagged by 4 of 95 VirusTotal security vendors and is registered through NameCheap, Inc. It resolves to IP address 188.114.96.3, was created on March 30, 2026, and appears on 2 separate security blocklists. Google Safe Browsing has classified this domain under the SOCIAL_ENGINEERING category, while the SSL certificate was issued by Let's Encrypt, suggesting an attempt to appear legitimate.


The domain remains active and poses an immediate threat to potential victims. Organizations and users should block echomusic.social at the network perimeter and DNS level. Security teams are advised to inspect endpoints for any interactions with this domain, particularly given its active status and multiple detections. Immediate threat hunting is recommended to identify any compromised accounts or systems that may have accessed this phishing page. The presence of Let's Encrypt further emphasizes the need for user awareness training to prevent successful social engineering attacks.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)
- Page title: Echo Prototype

## Domain Intelligence
- Registered: 2026-03-30 15:41:30
- Registrar: NameCheap, Inc.
- IP: 188.114.96.3

## Detection Status
- VirusTotal: 4 vendors flagged
- Google Safe Browsing: FLAGGED
- Blocklists: 2 hits
  Lists: ["MetaMask", "SEAL"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/85ce995e-17b4-4092-96b8-7fef93fbb378
- PhishDestroy: https://phishdestroy.io/domain/echomusic.social/
- LLM endpoint: https://phishdestroy.io/domain/echomusic.social/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/echomusic.social/
Last updated: 2026-03-31