# moonshots-top.com — SUSPICIOUS

> Warning: moonshots-top.com impersonates Moonshot. Avoid sharing personal info and verify URLs before interacting with this active phishing domain.

## Summary
PhishDestroy identifies moonshots-top.com as a brand impersonation phishing domain targeting the Moonshot brand. Classified under medium risk, this domain mimics Moonshot’s branding by using page titles such as "Vote to List — Powered by Moonshot" to deceive users into believing it is legitimate. The domain was registered recently and exhibits typical traits of fraudulent campaigns designed to harvest sensitive information or spread misinformation.

Technically, moonshots-top.com was registered on February 21, 2026, through Porkbun LLC and resolves to the IP address 35.157.26.135. VirusTotal analysis shows that 3 out of 95 security vendors have flagged the domain, indicating some but limited detection in automated systems. The domain is listed on at least one security blocklist, providing an external confirmation of its abusive nature. The infrastructure suggests a relatively new but active operation, likely aiming to exploit users familiar with the authentic Moonshot brand.

Currently, moonshots-top.com remains active and continues to pose a threat to unwary internet users. PhishDestroy advises caution by avoiding interactions with this domain, refraining from submitting any personal or financial data, and verifying URLs claiming association with Moonshot. Security researchers and end-users should monitor this domain closely as part of ongoing efforts to mitigate brand impersonation and phishing risks.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: alive (HTTP 200)
- Target brand: Moonshot
- Page title: Vote to List — Powered by Moonshot

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Expires: 2027-01-09 00:00:00
- Registrar: Porkbun LLC
- Country: Unknown
- IP: 35.157.26.135
- Nameservers: dns1.p09.nsone.net dns2.p09.nsone.net dns3.p09.nsone.net dns4.p09.nsone.net

## Detection Status
- VirusTotal: 3 vendors flagged
  Vendors: ["G-Data", "Gridinsoft", "SOCRadar"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019c4a99-b71b-70cc-b735-0f1a51d9196e.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/08f47d07-80a4-4f67-9cd2-61c1fe78f4ea
- PhishDestroy: https://phishdestroy.io/domain/moonshots-top.com/

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/moonshots-top.com/
Last updated: 2026-03-14