# proposal-aerodromefi.net — MALICIOUS

> proposal-aerodromefi.net is an active phishing site targeting users under the guise of Aerodrome Proposal. Stay alert and learn more on PhishDestroy.

## Summary
PhishDestroy identifies proposal-aerodromefi.net as an active phishing domain designed to deceive users by mimicking legitimate services with a page titled "Aerodrome Proposal." Such phishing threats pose a medium risk to users, potentially leading to credential theft or financial fraud if interacted with.

The domain was registered recently on February 21, 2026, and currently resolves to the IP address 104.21.71.51. It is flagged by 5 out of 95 security vendors on VirusTotal and appears on 3 different security blocklists. Additionally, it is referenced in one AlienVault OTX threat pulse, indicating recognition within the cybersecurity community. Despite these detections, the domain remains active and accessible.

Users are strongly advised to avoid interacting with proposal-aerodromefi.net or any unsolicited communications referring to it. Vigilance is essential: do not provide personal information or credentials, and report suspicious activity to relevant security teams. Employ updated security tools and consider blocking this domain to prevent potential compromise.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 530)
- Page title: Aerodrome Proposal

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- IP: 104.21.71.51
- SSL Issuer: WE1

## Detection Status
- VirusTotal: 5 vendors flagged
  Vendors: ["alphaMountain.ai", "CyRadar", "Fortinet", "SOCRadar", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/01995fe7-162f-75cf-b091-9947c205b355.png
- PhishDestroy: https://phishdestroy.io/domain/proposal-aerodromefi.net/
- LLM endpoint: https://phishdestroy.io/domain/proposal-aerodromefi.net/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/proposal-aerodromefi.net/
Last updated: 2026-03-19