# homepage-tzrsuite.pages.dev — MALICIOUS

> homepage-tzrsuite.pages.dev impersonates Sui brand in phishing attempt. Domain now offline; learn key details and stay protected.

## Summary
PhishDestroy identifies homepage-tzrsuite.pages.dev as a high-risk brand impersonation targeting the Sui brand. The site’s page title indicated suspected phishing activity, confirming its malicious intent.

Technical analysis shows the domain was created on February 21, 2026, registered through Cloudflare, Inc., and resolved to IP 172.66.44.209. It was flagged by 13 of 95 security vendors on VirusTotal and appears on one security blocklist, underscoring its threat nature.

The domain is currently offline, effectively disrupting its operations. PhishDestroy recommends continued monitoring for any reactivation attempts and advises users to remain vigilant against similar impersonation threats.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Target brand: Sui
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.44.209
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["norm.ns.cloudflare.com", "monika.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 13 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "CyRadar", "ESET", "Emsisoft", "Fortinet", "G-Data", "Kaspersky", "Lionic", "Netcraft", "Sophos", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/0199d314-4175-733a-8a7e-c0cb021befcc.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/cd888293-3322-45c6-8a83-4e83022b53d9
- PhishDestroy: https://phishdestroy.io/domain/homepage-tzrsuite.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/homepage-tzrsuite.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/homepage-tzrsuite.pages.dev/
Last updated: 2026-03-19