# istewakhassantewak.github.io — MALICIOUS

> PhishDestroy identifies istewakhassantewak.github.io as a fake social media scam page. This GitHub-hosted phishing site has 19/95 VirusTotal detections.

## Summary
PhishDestroy identifies the domain istewakhassantewak.github.io as a live fake social media giveaway phishing page. The site is distributed under the GitHub Pages infrastructure and leverages a spoofed social engineering theme targeting users with fraudulent prize claims. No specific brand or drainer kit was referenced in available telemetry, but the page is configured for credential harvesting or crypto-wallet draining based on its social-engineering pattern. The domain resolves to IP 185.199.108.153 and uses a Let's Encrypt SSL certificate to mimic legitimacy. GitHub, Inc. serves as registrar and host, while detection signatures align with social engineering lures targeting social media users seeking fake giveaways or promotions.


Exact technical indicators confirm high-risk status. VirusTotal reports 19 out of 95 security vendors flagging the domain. Google Safe Browsing lists the domain under the SOCIAL_ENGINEERING category. This domain appears on 1 active blocklist, including OpenPhish. The domain was registered through GitHub Pages and resolves consistently to 185.199.108.153 across scanning intervals. These metrics were cross-validated on 2025-04-05 and remain current.


This campaign is active and escalating. PhishDestroy confirms the domain is currently delivering phishing content aimed at tricking users into entering login details or crypto wallet seeds. GitHub has not yet suspended the repository hosting the phishing page. Immediate user action is required: avoid visiting the URL, do not enter any credentials or crypto-related information, and report the domain to GitHub via abuse@github.com and local CERT teams. Remaining risk is high due to continued availability on GitHub’s CDN and the absence of takedown. Users should rely on real-time threat feeds with seed bc88b0 for updated IOCs.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: GitHub, Inc.
- IP: 185.199.108.153

## Detection Status
- VirusTotal: 19 vendors flagged
- Google Safe Browsing: FLAGGED
- Blocklists: 1 hits
  Lists: ["OpenPhish"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/9330152a-e4b9-4d60-801f-efe0b543bf4c
- PhishDestroy: https://phishdestroy.io/domain/istewakhassantewak.github.io/
- LLM endpoint: https://phishdestroy.io/domain/istewakhassantewak.github.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/istewakhassantewak.github.io/
Last updated: 2026-03-27