# panteracaqital.com — SUSPICIOUS > PanteraCaqital.com mimics a financial firm to steal login credentials. Reported by PhishDestroy, this domain registered on 2026-02-15 shows 0/95 VirusTotal. ## Summary PhishDestroy has identified a malicious domain designed to impersonate Pantera Capital, a well-known investment firm. The site, panteracaqital.com, appears to be part of a credential harvesting campaign aimed at tricking users into revealing sensitive login details. By mimicking the branding and layout of a legitimate financial platform, attackers leverage social engineering to exploit trust. Visitors are redirected to fake login portals where their credentials are captured and sent to attacker-controlled servers, enabling unauthorized access to real accounts. This tactic is particularly dangerous for users who reuse passwords across services, as compromised credentials could grant access to multiple accounts, including financial services and email providers. Early indicators suggest the campaign is still active, with new victims being targeted daily. This domain was flagged by PhishDestroy during routine threat analysis. Intelligence shows panteracaqital.com was registered on February 15, 2026, through GMO Internet, Inc., a Japanese registrar known for hosting both legitimate and malicious domains. The domain resolves to IP address 43.203.171.62, which currently hosts no other flagged services, suggesting a targeted campaign against specific users. Notably, panteracaqital.com uses a Let’s Encrypt SSL certificate to appear legitimate—a common tactic to bypass browser warnings. Despite 95 security vendor scans via VirusTotal, the domain remains undetected (0/95 detections), highlighting the evolving nature of modern phishing campaigns. The low detection rate indicates that signature-based tools are struggling to identify this threat, relying instead on behavioral and reputation-based analysis. If you visited panteracaqital.com: immediately cease using any credentials you may have entered. Change passwords on all sensitive accounts, especially those related to financial services, email, or cryptocurrency platforms. Enable multi-factor authentication wherever possible to prevent unauthorized access even if your password is compromised. Scan your device for malware using a trusted antivirus tool, as some phishing pages may also deploy keyloggers or spyware. Report the domain to your IT security team or file a complaint with local cybercrime units. Avoid clicking any links in emails or messages claiming to be from Pantera Capital, and verify all financial communications through official channels using verified contact information. The site should be blocked at the network level and flagged for takedown to protect others from falling victim. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-02-15 17:44:40 - Registrar: GMO Internet, Inc. - IP: 43.203.171.62 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/b2f0aefb-11b8-408d-b8c3-e5f9dc7bbe9c - PhishDestroy: https://phishdestroy.io/domain/panteracaqital.com/ - LLM endpoint: https://phishdestroy.io/domain/panteracaqital.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/panteracaqital.com/ Last updated: 2026-03-23