# register-brevis.xyz — MALICIOUS

> register-brevis.xyz is a phishing threat currently offline but previously flagged. Stay vigilant and avoid interaction with this domain.

## Summary
PhishDestroy identifies register-brevis.xyz as a generic phishing domain designed to deceive users into revealing sensitive information. The domain was registered recently, on February 21, 2026, suggesting it was created for short-term malicious activity. Its classification as a phishing threat is based on multiple security detections and behavioral patterns consistent with credential theft schemes.

Technical indicators reveal that register-brevis.xyz was flagged by 7 out of 95 VirusTotal security vendors and appears on 2 separate security blocklists. The domain was registered through a service identified as a 'Dead domain,' which is often used by attackers to mask ownership. These factors, combined with the domain’s rapid take down, indicate a coordinated security response to mitigate risk. The domain likely hosted fraudulent login pages or impersonated legitimate services to harvest user data.

Currently, register-brevis.xyz is offline and inaccessible, reducing immediate risk to users. PhishDestroy recommends continued monitoring for related domains or infrastructure reuse by threat actors. Users and organizations should maintain strong anti-phishing defenses, update blocklists, and remain cautious of unsolicited communications referencing this or similar domains. Prompt reporting and domain takedown actions remain critical in countering these phishing campaigns.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 0)
- Page title: Brevis Airdrop Registration Portal

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: NiceNIC International Group Co., Limited
- Country: HK
- IP: 193.233.112.35
- IP Country: FI
- IP City: Helsinki
- IP Org: AS205775 NEON CORE NETWORK LLC
- Nameservers: ["ns3.my-ndns.com", "ns4.my-ndns.com"]
- SSL Issuer: none

## Detection Status
- VirusTotal: 7 vendors flagged
  Vendors: ["alphaMountain.ai", "CyRadar", "Ermes", "Fortinet", "Gridinsoft", "Seclookup", "SOCRadar"]
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "ScamSniffer"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019baab3-b746-719b-a30d-9fe9be663ec5.png
- PhishDestroy: https://phishdestroy.io/domain/register-brevis.xyz/
- LLM endpoint: https://phishdestroy.io/domain/register-brevis.xyz/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/register-brevis.xyz/
Last updated: 2026-03-19