# prashantsanap4748.github.io — MALICIOUS

> Investigating prashantsanap4748.github.io: a Fake PayPal login phishing page hosted on GitHub. 17 VirusTotal vendors flagged this active threat.

## Summary
PhishDestroy identifies prashantsanap4748.github.io as an active Fake PayPal login phishing domain. This GitHub-hosted page mimics PayPal’s credential collection interface to harvest user credentials.

This domain was flagged by 17 of 95 VirusTotal vendors, registered via GitHub, Inc. and resolves to IP 185.199.108.153. Google Safe Browsing lists this under SOCIAL_ENGINEERING with Let's Encrypt SSL certification.

The threat remains active and poses high risk to visitors. Users should avoid interaction and treat any PayPal-themed content on this domain as malicious. Employ ad-blockers and browser privacy tools to mitigate exposure. Report the domain to your security team and update network blocklists immediately.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: GitHub, Inc.
- IP: 185.199.108.153

## Detection Status
- VirusTotal: 17 vendors flagged
- Google Safe Browsing: FLAGGED
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/f6b4b9dd-6929-43de-849d-1cfdc5751834
- PhishDestroy: https://phishdestroy.io/domain/prashantsanap4748.github.io/
- LLM endpoint: https://phishdestroy.io/domain/prashantsanap4748.github.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/prashantsanap4748.github.io/
Last updated: 2026-03-29