# rupagithu11.github.io — MALICIOUS

> rupagithu11.github.io impersonates tech support to steal credentials. 17 security vendors flag this site; check the full report.

## Summary
PhishDestroy identifies rupagithu11.github.io as an active tech-support scam site that lures visitors with fake error pop-ups and prompts for remote access. The domain resolves to IP 185.199.108.153 and is currently served over a Let’s Encrypt SSL certificate, giving it a deceptive veneer of legitimacy. Google Safe Browsing already labels it SOCIAL_ENGINEERING, and OpenPhish has blocked it, yet the page remains reachable and continues to harvest login details and payment information from unwary users.


This domain was flagged by 17 out of 95 VirusTotal security vendors within hours of its creation. It was registered through GitHub, Inc., the hosting provider, which allows rapid provisioning of pages but also enables malicious actors to spin up new campaigns quickly. The page is still active and has already appeared on one public blocklist, meaning real users are encountering it in the wild and risking credential theft or financial loss.


If you visited rupagithu11.github.io, immediately close the browser tab or window. Do not enter any personal information, passwords, or payment details. Run a full antivirus scan on the device you used to access the site. Rotate any passwords you may have typed on that device, enable multi-factor authentication on important accounts, and monitor bank statements for unauthorized transactions. Report the domain to your IT department or security team so they can block it at the network perimeter.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP ?)

## Domain Intelligence
- Registrar: GitHub, Inc.
- IP: 185.199.108.153

## Detection Status
- VirusTotal: 17 vendors flagged
- Google Safe Browsing: FLAGGED
- Blocklists: 1 hits
  Lists: ["OpenPhish"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/8d409159-0dd7-43ed-adc3-318917a84df3
- PhishDestroy: https://phishdestroy.io/domain/rupagithu11.github.io/
- LLM endpoint: https://phishdestroy.io/domain/rupagithu11.github.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/rupagithu11.github.io/
Last updated: 2026-04-14