# mohitkumar21919-sudo.github.io — SUSPICIOUS > GitHub-hosted mohitkumar21919-sudo.github.io poses as a phishing page to steal credentials. Resolves to 185.199.108.153 with 0/95 VirusTotal detections. ## Summary PhishDestroy identifies mohitkumar21919-sudo.github.io as an active credential-harvesting phishing site hosted on GitHub Pages. This fraudulent subdomain is designed to mimic legitimate login portals, tricking users into entering sensitive credentials that are immediately exfiltrated to attacker-controlled servers. The page is engineered to harvest usernames, passwords, and potentially multi-factor authentication codes, posing a severe risk to personal accounts and corporate assets if credentials are reused across services. This domain was flagged after resolving to IP address 185.199.108.153 and returning a clean scan result of 0 detections out of 95 engines on VirusTotal, indicating it remains undetected by standard antivirus definitions. The site is registered through GitHub, Inc., leveraging the platform’s trusted infrastructure to evade traditional domain-based filtering. Additionally, it utilizes a Let’s Encrypt SSL certificate to appear legitimate, encrypting traffic to hide exfiltration from network monitoring tools. Despite its current obscurity, this site has been active long enough to warrant human-level scrutiny and proactive blocking. Users who visited mohitkumar21919-sudo.github.io should immediately audit their account credentials for potential exposure and enable account recovery options such as password reset and backup email verification. If any login was attempted, change passwords immediately, revoke active sessions, and monitor accounts for suspicious activity. Avoid entering sensitive information on any page hosted under this subdomain. Organizations should block this domain and IP at the network firewall level and update browser-based blocklists to prevent further access. Report any interactions to PhishDestroy or your internal security team for forensic analysis. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: GitHub, Inc. - IP: 185.199.108.153 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/688d190e-1866-4451-af75-6f5925bb4f5b - PhishDestroy: https://phishdestroy.io/domain/mohitkumar21919-sudo.github.io/ - LLM endpoint: https://phishdestroy.io/domain/mohitkumar21919-sudo.github.io/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/mohitkumar21919-sudo.github.io/ Last updated: 2026-04-13