# mail-frost.energyacable.com — MALICIOUS

> mail-frost.energyacable.com shows medium phishing risk. Avoid interaction and monitor for suspicious activity. Stay cautious with unknown links.

## Summary
PhishDestroy identifies mail-frost.energyacable.com as an active domain posing a medium-level generic phishing threat. This risk assessment stems from its recent creation and suspicious content, indicating potential misuse in fraudulent schemes that aim to deceive users into revealing sensitive information.

The domain was registered on January 7, 2026, through Realtime Register B.V. It resolves to the IP address 172.67.191.216 and currently hosts a default "Welcome to XAMPP" page, which suggests possible misconfiguration or use of a generic server setup. Despite only 3 out of 95 VirusTotal vendors flagging the domain, these low detections combined with the young domain age and generic phishing classification justify caution. The domain's infrastructure and registration details align with common patterns seen in phishing campaigns attempting to exploit trust.

Users and organizations should avoid interacting with mail-frost.energyacable.com and block it where possible. Given its active status and medium risk level, continuous monitoring for any shifts in behavior or increased malicious activity is advised. This domain should be incorporated into threat intelligence feeds to prevent potential credential theft or data compromise due to phishing attacks. Employing email filtering and domain reputation checks will further reduce exposure to this threat.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 200)
- Page title: Welcome to XAMPP

## Domain Intelligence
- Registered: 2026-03-10 13:07:01
- Registrar: Realtime Register B.V.
- IP: 172.67.191.216
- Nameservers: lars.ns.cloudflare.com ullis.ns.cloudflare.com

## Detection Status
- VirusTotal: 9 vendors flagged
  Vendors: ["ADMINUSLabs", "CRDF", "Cluster25", "Fortinet", "Gridinsoft", "MalwareURL", "SOCRadar", "URLQuery", "alphaMountain.ai"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://i.ibb.co/ccxkftHP/601b0151b121.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/b19ae86f-f0a4-458a-bbd7-4868e905405e
- PhishDestroy: https://phishdestroy.io/domain/mail-frost.energyacable.com/

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/mail-frost.energyacable.com/
Last updated: 2026-03-14