# icloudmapa.net — MALICIOUS > icloudmapa.net is a brand impersonation site mimicking Apple, flagged by 16 of 95 VirusTotal vendors. Check if your device is at risk now. ## Summary PhishDestroy identifies icloudmapa.net as an active Apple brand impersonation domain operating with elevated risk. The site mimics official Apple services to deceive users into divulging credentials or installing malicious software, and is currently listed as an active threat by multiple security platforms. The domain icloudmapa.net was registered through Gransy, s.r.o. on February 06, 2026 and resolves to IP address 188.114.96.3. This domain has been flagged by 16 out of 95 VirusTotal security vendors and appears on 2 independent phishing blocklists including OpenPhish and PhishingArmy. It holds a valid SSL certificate issued by Let’s Encrypt, which may increase its perceived legitimacy to end users. Despite this, trust scores remain critically low due to its association with malicious brand impersonation tactics targeting Apple users. As of the latest assessment, icloudmapa.net remains active and actively distributing Apple-themed lures. Users are strongly advised not to interact with this domain or any linked content. Security teams should block the domain at network and endpoint levels using indicators: 188.114.96.3 and icloudmapa.net. Additionally, users should verify website authenticity via official Apple domains (apple.com, icloud.com) and enable two-factor authentication on all Apple accounts. Monitor network traffic for connections to known malicious infrastructure associated with this campaign. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) - Target brand: Apple ## Domain Intelligence - Registered: 2026-02-06 15:16:02 - Registrar: Gransy, s.r.o. - IP: 188.114.96.3 ## Detection Status - VirusTotal: 16 vendors flagged - Google Safe Browsing: clean - Blocklists: 2 hits Lists: ["OpenPhish", "PhishingArmy"] ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/1d4e4933-fe84-48d7-874e-a69820d9001a - PhishDestroy: https://phishdestroy.io/domain/icloudmapa.net/ - LLM endpoint: https://phishdestroy.io/domain/icloudmapa.net/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/icloudmapa.net/ Last updated: 2026-03-29