# ferapex.com — SUSPICIOUS

> ferapex.com impersonates a well-known brand via a credential harvesting page. 0/95 VirusTotal detections, check the full report.

## Summary
PhishDestroy identifies ferapex.com as an active credential-stealing page hosting a generic impersonation campaign. The domain’s risk level remains under investigation, but the low detection ratio (0/95 on VirusTotal) suggests it is either newly launched or using evasion techniques.

This domain was flagged via DNS resolution to 172.67.150.2, registered through MAT BAO CORPORATION on March 30, 2026, and secured with a Let’s Encrypt SSL certificate. At the time of discovery, ferapex.com shows no matches on public blocklists and has not yet accumulated measurable trust scores.

Organizations should block ferapex.com at DNS and firewall layers and inspect endpoint telemetry for outbound HTTP/S connections to 172.67.150.2. Users who may have entered credentials should rotate passwords and enable MFA on all related accounts immediately.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-30 01:47:43
- Registrar: MAT BAO CORPORATION
- IP: 172.67.150.2

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/ferapex.com
- PhishDestroy: https://phishdestroy.io/domain/ferapex.com/
- LLM endpoint: https://phishdestroy.io/domain/ferapex.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ferapex.com/
Last updated: 2026-04-04