# gitpasstest.pages.dev — SUSPICIOUS

> PhishDestroy identifies gitpasstest.pages.dev as an active crypto wallet phishing domain flagged by 1 of 95 VirusTotal vendors. Check the full report.

## Summary
The domain gitpasstest.pages.dev is an active crypto wallet login phishing scam detected by PhishDestroy. This malicious site is currently online and impersonates legitimate login portals to steal cryptocurrency credentials.

This domain was flagged by 1 of 95 VirusTotal security vendors, registered through Cloudflare, Inc., and resolves to IP 172.66.45.22. It has been listed on 1 security blocklist and holds a Google Trust Services SSL certificate, indicating deceptive trust signals designed to evade detection.

Given its elevated phishing risk and active status, users are strongly advised to avoid interacting with this domain. If credential exposure or financial loss is suspected, reset passwords and enable two-factor authentication immediately. Report any encounters to PhishDestroy for further analysis.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.45.22

## Detection Status
- VirusTotal: 1 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["ScamSniffer"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/ead8c7a5-6394-4eb9-b9b7-930ca939dc81
- PhishDestroy: https://phishdestroy.io/domain/gitpasstest.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/gitpasstest.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/gitpasstest.pages.dev/
Last updated: 2026-03-21