# sahuharikishor.github.io — MALICIOUS > sahuharikishor.github.io is a credential theft phishing site flagged by 15 of 95 VT vendors. Active threat; avoid entering personal data. ## Summary The domain sahuharikishor.github.io has been identified as a high-risk credential theft phishing site. It is currently active and leverages GitHub Pages hosting to impersonate legitimate services in order to capture sensitive user credentials. There is no specific indication of a crypto drainer or brand impersonation kit, but the primary threat is the collection of login information for malicious use. Technical indicators include a VirusTotal detection rate of 15 out of 95 security vendors marking this domain as malicious. The domain resolves to the IP address 185.199.108.153, which is a GitHub Pages IP. It was registered through GitHub, Inc. and secures connections via a Let's Encrypt SSL certificate. The domain is listed on one security blocklist and is actively blocked by OpenPhish. Despite these detections, the domain remains active and accessible online. Given the persistent active status of sahuharikishor.github.io, users are strongly advised to refrain from entering any personal or login details on this site. Security teams should ensure this domain is added to internal blocklists and monitor for any related phishing campaigns. Continued vigilance is required as attackers may update the site or expand their tactics, maintaining a high risk for credential compromise. ## Threat Details - Verdict: MALICIOUS - Site status: alive (HTTP ?) ## Domain Intelligence - Registrar: GitHub, Inc. - IP: 185.199.108.153 ## Detection Status - VirusTotal: 15 vendors flagged - Google Safe Browsing: clean - Blocklists: 1 hits Lists: ["OpenPhish"] ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/77969130-a27c-413c-a4b7-fd6c3c450443 - PhishDestroy: https://phishdestroy.io/domain/sahuharikishor.github.io/ - LLM endpoint: https://phishdestroy.io/domain/sahuharikishor.github.io/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/sahuharikishor.github.io/ Last updated: 2026-04-14