# raunak1022.github.io — MALICIOUS > raunak1022.github.io: credential theft domain flagged by 14/95 VirusTotal vendors. Learn how to avoid fake login pages and protect your crypto assets. Act now. ## Summary The domain raunak1022.github.io has been identified as an active credential theft site designed to harvest login details under the guise of legitimacy. It mimics trusted platforms to trick users into entering sensitive information such as passwords or cryptocurrency wallet credentials, enabling threat actors to gain unauthorized access to accounts. This site specifically targets users who may click on deceptive links or advertisements, often propagated across social media or messaging platforms, luring victims with promises of promotions, giveaways, or urgent account verification requests. The infrastructure behind this domain is intentionally crafted to appear harmless by leveraging GitHub Pages, which hosts static content, and a Let's Encrypt SSL certificate to establish credibility. However, the true intent lies in the fraudulent form fields embedded in the site’s pages, which capture and transmit entered data to attacker-controlled servers. PhishDestroy identifies this domain as an elevated-risk threat based on multiple indicators of compromise. It resolves to IP address 185.199.108.153, a hosting node known for hosting malicious content. Among 95 security vendors surveyed by VirusTotal, 14 flagged this domain as malicious or suspicious, illustrating its detected association with fraudulent activity. The domain is registered through GitHub, Inc., a legitimate platform utilized by threat actors to create convincing fake pages under the guise of trusted domains. This technique exploits the reputation of well-known services to bypass traditional email or web filtering systems that rely on domain reputation scores. If you have visited raunak1022.github.io or entered any login credentials or sensitive information, act immediately to secure your accounts. Change passwords on all potentially affected platforms, enable multi-factor authentication where available, and monitor accounts for unauthorized transactions. Do not reuse passwords across different services. It is also recommended to run a full antivirus scan on your device to detect any installed malware that may have resulted from visiting this site. Report the domain to your IT security team or relevant cybercrime reporting platforms to help block further distribution. Always verify URLs carefully and avoid clicking suspicious links, especially those promising unrealistic rewards or urgent actions. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: GitHub, Inc. - IP: 185.199.108.153 ## Detection Status - VirusTotal: 14 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/9764c020-2a5a-4fda-b7ba-44362c56f1e4 - PhishDestroy: https://phishdestroy.io/domain/raunak1022.github.io/ - LLM endpoint: https://phishdestroy.io/domain/raunak1022.github.io/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/raunak1022.github.io/ Last updated: 2026-03-28