# legamb.cc — MALICIOUS

> legamb.cc flagged for credential harvesting phishing. 7/95 security vendors detected threats. Check the full report for details and safety steps.

## Summary
legamb.cc has been identified as a credential harvesting phishing domain, posing an elevated risk to users. This assessment is based on its active status, recent domain creation, and multiple security vendor detections. Users should avoid entering sensitive information on this site.  legamb.cc was created on March 20, 2026, and resolves to IP 172.67.216.196. The domain is registered through NICENIC INTERNATIONAL GROUP CO., LIMITED and uses a Let's Encrypt SSL certificate. VirusTotal reports that 7 out of 95 security vendors flag this domain, indicating widespread suspicion. Additionally, the domain’s recent creation and association with high-risk IPs suggest it is likely part of a coordinated phishing campaign targeting user credentials.  To mitigate the risk of credential theft, users should avoid interacting with legamb.cc entirely. If you suspect exposure to this domain, immediately change passwords for any accounts potentially linked to it and enable two-factor authentication where available. Report the domain to your browser or security provider for further blocking. For ongoing protection, use a reputable ad-blocker or anti-phishing extension to detect similar threats.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-20 21:54:13
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- IP: 172.67.216.196

## Detection Status
- VirusTotal: 7 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/e2498577-824e-47a5-abed-2d0053fa4319
- PhishDestroy: https://phishdestroy.io/domain/legamb.cc/
- LLM endpoint: https://phishdestroy.io/domain/legamb.cc/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/legamb.cc/
Last updated: 2026-04-13