# navietkoreeark-aqnxoqtjhvmkvvrhmxsrmctf.pages.dev — MALICIOUS

> navietkoreeark-aqnxoqtjhvmkvvrhmxsrmctf.pages.dev is a high-risk phishing site. Avoid entering personal info and report suspicious activity immediately.

## Summary
PhishDestroy identifies navietkoreeark-aqnxoqtjhvmkvvrhmxsrmctf.pages.dev as a high-risk phishing domain designed to deceive users into revealing sensitive information. The site, titled '회원정보 고객센터,' mimics legitimate customer service portals to trick visitors. This domain was created recently and is flagged by multiple security tools, making it unsafe to trust.

This phishing scheme operates by luring users to a fake login or information submission page under the guise of customer support. Once users input their credentials or personal data, attackers can harvest this information for fraudulent activities such as identity theft or unauthorized account access. The use of Cloudflare’s infrastructure and a domain that closely resembles authentic service pages adds to its deceptive appearance.

If you have visited navietkoreeark-aqnxoqtjhvmkvvrhmxsrmctf.pages.dev, refrain from entering any further data and immediately change passwords associated with any accounts you may have exposed. It is advisable to monitor your accounts for unusual activity and consider enabling two-factor authentication. Reporting this phishing attempt to your IT department or relevant authorities can help prevent others from falling victim.

## Threat Details
- Verdict: MALICIOUS
- Site status:  (HTTP ?)
- Page title: 회원정보 고객센터

## Domain Intelligence
- Registered: 2026-03-11 15:07:01
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.47.146
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: jade.ns.cloudflare.com lee.ns.cloudflare.com
- SSL Issuer: Let's Encrypt / E8

## Detection Status
- VirusTotal: 13 vendors flagged
  Vendors: ["ADMINUSLabs", "BitDefender", "CyRadar", "ESET", "Emsisoft", "G-Data", "Gridinsoft", "LevelBlue", "Lionic", "MalwareURL", "Netcraft", "Phishing Database", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ce1ff-2ee2-776b-8656-e99d8a26884d.png
- PhishDestroy: https://phishdestroy.io/domain/navietkoreeark-aqnxoqtjhvmkvvrhmxsrmctf.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/navietkoreeark-aqnxoqtjhvmkvvrhmxsrmctf.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/navietkoreeark-aqnxoqtjhvmkvvrhmxsrmctf.pages.dev/
Last updated: 2026-03-19