# presale.havanaelephant.com — SUSPICIOUS

> presale.havanaelephant.com is under investigation for possible phishing activity. Stay cautious and verify before sharing sensitive info.

## Summary
PhishDestroy has identified presale.havanaelephant.com as a domain under investigation for potential generic phishing threats. Although no direct reports or detections currently classify it as malicious, caution is advised due to its recent registration and suspicious context. Users should remain vigilant when interacting with this domain.

The domain presale.havanaelephant.com was created on August 13, 2025, and is registered through Name.com, Inc. It resolves to the IP address 76.76.21.21, a common hosting endpoint that has no inherent risk indicators by itself. VirusTotal scans reveal no detections across 95 security vendors, indicating that the domain has not yet been flagged by mainstream security tools.

Despite the lack of current detections, the domain remains active and under investigation due to its association with potential generic phishing activity. PhishDestroy recommends avoiding providing any personal or financial information on this site until more conclusive risk assessments are available. Users are encouraged to monitor official updates and use trusted security solutions when encountering unfamiliar domains like presale.havanaelephant.com.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: alive (HTTP 200)
- Page title: $HVNA Presale - Get In at $0.0015 Before Launch at $0.07+

## Domain Intelligence
- Registered: 2025-08-13 13:32:32
- Registrar: Name.com, Inc.
- IP: 76.76.21.21
- Nameservers: dns1.p01.nsone.net dns2.p01.nsone.net dns3.p01.nsone.net dns4.p01.nsone.net

## Detection Status
- VirusTotal: 1 vendors flagged
  Vendors: []
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Screenshot: https://i.ibb.co/mV2QSBrn/0ebac39bf138.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/e1eed01c-f2ff-4357-9ef8-414c6ae5f7aa
- PhishDestroy: https://phishdestroy.io/domain/presale.havanaelephant.com/
- LLM endpoint: https://phishdestroy.io/domain/presale.havanaelephant.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/presale.havanaelephant.com/
Last updated: 2026-03-19