# moonershot.com — MALICIOUS

> moonershot.com is currently active in phishing attempts. Learn key risks and technical details to stay protected from this medium-risk threat.

## Summary
PhishDestroy identifies moonershot.com as an active phishing domain posing medium risk to users. The site uses the page title "Moonshot" to lure victims into potential credential theft or fraud.

The domain resolves to IP 172.67.202.9 and was registered on February 21, 2026. It appears on two security blocklists and is flagged by 5 out of 95 VirusTotal vendors, indicating a moderate detection rate.

Currently active, moonershot.com should be avoided. Users and organizations are advised to block access, monitor related network traffic, and update phishing filters to mitigate exposure.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 530)
- Page title: Moonshot

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- IP: 172.67.202.9
- SSL Issuer: WE1

## Detection Status
- VirusTotal: 5 vendors flagged
  Vendors: ["alphaMountain.ai", "G-Data", "Gridinsoft", "SOCRadar", "Sophos"]
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "ScamSniffer"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019b9e75-20cd-71f4-afd6-bc8018743923.png
- PhishDestroy: https://phishdestroy.io/domain/moonershot.com/
- LLM endpoint: https://phishdestroy.io/domain/moonershot.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/moonershot.com/
Last updated: 2026-03-19