# moonshot.lvte.cc — SUSPICIOUS

> moonshot.lvte.cc is a confirmed brand impersonation scam site with 2/95 VirusTotal detections. This domain impersonates Moonshot to deceive users.

## Summary
PhishDestroy identifies moonshot.lvte.cc as an elevated-risk domain actively impersonating the Moonshot brand to deceive users. This domain resolves to IP 147.78.64.164 and was registered through HOSTINGER operations, UAB on March 09, 2026, making it a relatively new threat with a short operational window. The domain utilizes a Let's Encrypt SSL certificate to appear legitimate, a tactic commonly employed by impersonation scams to build false trust.  This domain was flagged by security vendors with a VirusTotal detection ratio of 2 out of 95, indicating low but present suspicion among threat intelligence systems. The creation date and registrar details suggest rapid deployment, often a hallmark of opportunistic scam operations targeting emerging brands or trends. The impersonation of Moonshot, combined with the use of a newly registered domain, increases the likelihood of successful deception, particularly among users unfamiliar with the brand’s official digital presence.  Users who visited moonshot.lvte.cc should immediately cease any interaction with the site and scan their devices for malware or unauthorized access. If any credentials or sensitive information were entered, those credentials should be changed immediately, and relevant accounts monitored for suspicious activity. Reporting the domain to your organization’s security team or to the official Moonshot brand channels can help mitigate further risks and prevent others from falling victim to this scam.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)
- Target brand: Moonshot

## Domain Intelligence
- Registered: 2026-03-09 11:05:57
- Registrar: HOSTINGER operations, UAB
- IP: 147.78.64.164

## Detection Status
- VirusTotal: 2 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/9a146435-926c-4510-a56f-61d6c51c0251
- PhishDestroy: https://phishdestroy.io/domain/moonshot.lvte.cc/
- LLM endpoint: https://phishdestroy.io/domain/moonshot.lvte.cc/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/moonshot.lvte.cc/
Last updated: 2026-03-21