# letarthuralcantara.github.io — MALICIOUS

> PhishDestroy warns that letarthuralcantara.github.io hosts a fake login page stealing credentials. 14/95 security engines flag this domain, which resolves to.

## Summary
PhishDestroy identifies letarthuralcantara.github.io as hosting a generic phishing page designed to harvest user credentials. The page does not specifically impersonate a named brand but instead employs a generic harvest-and-drain approach to capture any entered credentials. No crypto drainer kit or advanced JavaScript obfuscation was detected during sandbox analysis; the threat is presently a standard credential phishing campaign.  This domain was flagged by 14 out of 95 VirusTotal security vendors and is currently resolving to IP address 185.199.108.153. The domain is registered through GitHub Pages, enjoys a valid Let’s Encrypt SSL certificate, and is blocked by the OpenPhish feed. It appears on one public blocklist and carries an elevated risk profile due to the active credential harvesting campaign.  As of today, letarthuralcantara.github.io remains active and accessible. GitHub has not yet suspended the page despite the OpenPhish block and low blocklist count. Users should avoid interacting with the site; if credentials were entered, rotate passwords immediately and enable multi-factor authentication. The residual risk remains elevated while the page remains live and the domain continues to resolve.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: GitHub, Inc.
- IP: 185.199.108.153

## Detection Status
- VirusTotal: 14 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["OpenPhish"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/aa50fec6-e981-47cd-8e18-f8dfed86ede9
- PhishDestroy: https://phishdestroy.io/domain/letarthuralcantara.github.io/
- LLM endpoint: https://phishdestroy.io/domain/letarthuralcantara.github.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/letarthuralcantara.github.io/
Last updated: 2026-03-31