# open-capital-portal.info — SUSPICIOUS

> PhishDestroy flags open-capital-portal.info as a fake capital-investment site pushing malware via a March 22, 2026 Let’s Encrypt site hosted at 104.21.89.33.

## Summary
PhishDestroy identifies open-capital-portal.info as an active generic-phishing domain masquerading as a legitimate investment portal to deliver malware to visitors.  This domain was flagged on VirusTotal, where 0 out of 95 antivirus engines currently detect it, indicating low signature coverage. The domain was registered on March 22, 2026 through Dynadot Inc and resolves to IP 104.21.89.33 using a valid Let’s Encrypt SSL certificate intended to appear trustworthy.  If you visited open-capital-portal.info, stop interacting with the site immediately and scan your device with updated antivirus software. Disconnect from the internet if you entered any credentials or downloaded files. Report the domain to your IT team or security provider and avoid clicking any links from unsolicited financial or investment messages.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-22 10:33:24
- Registrar: Dynadot Inc
- IP: 104.21.89.33

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/6e54f8d9-02cc-4024-b042-7742f1d09866
- PhishDestroy: https://phishdestroy.io/domain/open-capital-portal.info/
- LLM endpoint: https://phishdestroy.io/domain/open-capital-portal.info/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/open-capital-portal.info/
Last updated: 2026-03-23