# m.skillingusmarkts.cc — MALICIOUS

> Stay safe from phishing threats linked to m.skillingusmarkts.cc. Avoid interacting with this domain and report suspicious activity immediately.

## Summary
PhishDestroy identifies m.skillingusmarkts.cc as an active phishing domain designed to deceive users and harvest sensitive information. This threat is significant because phishing attacks can lead to identity theft, financial loss, and unauthorized access to personal or corporate accounts. Given its high-risk classification, users should exercise extreme caution when encountering communications or links associated with this domain.

The domain m.skillingusmarkts.cc was registered recently on November 24, 2025, through Gname.com Pte. Ltd. It resolves to the IP address 188.114.96.3. VirusTotal analysis flags this domain with detections from 11 out of 95 security vendors, while Google Safe Browsing categorizes it under "SOCIAL_ENGINEERING," confirming its malicious intent. The combination of its new registration, flagged status, and hosting details indicate a well-orchestrated phishing infrastructure intended to exploit unsuspecting users.

Users are advised to avoid clicking on links or providing any personal information on m.skillingusmarkts.cc. Suspicious emails or messages referencing this domain should be deleted immediately, and any interaction with related content should be reported to IT security teams or phishing watchdog services. Maintaining updated security software and practicing vigilance can help mitigate the risk posed by this active phishing campaign.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 200)
- Page title: Skilling

## Domain Intelligence
- Registered: 2025-11-24 16:34:18
- Registrar: Gname.com Pte. Ltd.
- Country: SG
- IP: 188.114.96.3
- Nameservers: cesar.ns.cloudflare.com ingrid.ns.cloudflare.com

## Detection Status
- VirusTotal: 11 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "CRDF", "CyRadar", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Google Safebrowsing", "Lionic", "Sophos"]
- Google Safe Browsing: FLAGGED
- Blocklists: 0 hits

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cf6fa-b4f6-74c5-a8ea-d69072c73406.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/7e066b2b-2458-4498-9603-3e7ba3684667
- PhishDestroy: https://phishdestroy.io/domain/m.skillingusmarkts.cc/
- LLM endpoint: https://phishdestroy.io/domain/m.skillingusmarkts.cc/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/m.skillingusmarkts.cc/
Last updated: 2026-03-19