# pasport-kupit.sbs — SUSPICIOUS > PhishDestroy identifies pasport-kupit.sbs as a passport phishing threat. Created July 11, 2025, avoid entering personal data on this site. ## Summary PhishDestroy has flagged pasport-kupit.sbs as an elevated-risk, active generic phishing domain. This designation indicates a high probability that the domain is being used to conduct fraudulent activities, such as stealing personal information, specifically related to passport information or sales. Users should exercise extreme caution and avoid interacting with this domain. Technical indicators for pasport-kupit.sbs include a VirusTotal detection ratio of 4/95, suggesting that while not universally recognized as malicious, a significant number of security vendors have identified it as a potential threat. The domain resolves to IP address 185.110.92.47 and uses an SSL certificate issued by Let's Encrypt. The domain was registered relatively recently, on July 11, 2025, through NICENIC INTERNATIONAL GROUP CO., LIMITED. This recent creation date is common in phishing campaigns, as malicious actors frequently create new domains to evade detection. To mitigate the risks associated with pasport-kupit.sbs, users should avoid visiting the site, clicking on any links associated with it, or entering any personal information. If you have previously interacted with this domain, it is recommended to change your passwords, monitor your financial accounts for any suspicious activity, and be wary of any unsolicited communications. Report the domain to your email provider and any relevant authorities to help prevent others from falling victim to this phishing campaign. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2025-07-11 09:56:52 - Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED - IP: 185.110.92.47 ## Detection Status - VirusTotal: 4 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/c8111d5f-08dc-4fa5-a11e-321ce693ffb8 - PhishDestroy: https://phishdestroy.io/domain/pasport-kupit.sbs/ - LLM endpoint: https://phishdestroy.io/domain/pasport-kupit.sbs/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/pasport-kupit.sbs/ Last updated: 2026-03-27