# mahiyasingh.github.io — MALICIOUS

> PhishDestroy flags mahiyasingh.github.io as a live crypto drainer impersonating a brand. 11 of 95 VirusTotal engines already detect it.

## Summary
PhishDestroy identifies the domain mahiyasingh.github.io as a high-risk crypto-draining impersonation currently active on GitHub Pages. The threat is a live web wallet-drainers page that prompts victims to connect their cryptocurrency wallets under false pretenses. The Infrastructure owner has not yet taken the page down, indicating ongoing malicious operations.  This domain was registered through GitHub, Inc. and resolves to IP address 185.199.108.153. VirusTotal lists 11 out of 95 security vendors already flagging the page, and Google Safe Browsing classifies it as SOCIAL_ENGINEERING. The site holds a Let’s Encrypt SSL certificate but remains untrusted by most browsers and endpoint scanners.  The high-risk status is confirmed; the page is still accessible and attempting to drain cryptocurrency wallets. Users are urged to avoid the domain entirely, verify any suspicious links using PhishDestroy’s real-time scanner, and report the page to GitHub’s abuse team for immediate takedown.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: GitHub, Inc.
- IP: 185.199.108.153

## Detection Status
- VirusTotal: 11 vendors flagged
- Google Safe Browsing: FLAGGED
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/768e9cbd-fa59-48d7-907e-701f9e0c4044
- PhishDestroy: https://phishdestroy.io/domain/mahiyasingh.github.io/
- LLM endpoint: https://phishdestroy.io/domain/mahiyasingh.github.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/mahiyasingh.github.io/
Last updated: 2026-03-30