# seitentaisei1304.github.io — MALICIOUS

> seitentaisei1304.github.io is a credential theft phishing site flagged by 16/95 VT vendors and Google Safe Browsing. Avoid entering personal data.

## Summary
The domain seitentaisei1304.github.io is involved in a high-risk credential theft phishing campaign. There is no direct evidence of brand impersonation or use of a specific drainer kit, but the site targets users to steal login credentials. This activity poses significant risk to users who may unknowingly disclose sensitive information.

Technical indicators include a VirusTotal detection ratio of 16 out of 95 security vendors flagging the domain. It is registered through GitHub, Inc., a common platform abused for hosting phishing content due to its free hosting capabilities. The domain resolves to IP address 185.199.108.153, which is associated with GitHub Pages hosting. Google Safe Browsing classifies the domain under the SOCIAL_ENGINEERING category, indicating it is used to manipulate users into sharing personal data. Additionally, the domain appears on one security blocklist and is already blocked by OpenPhish. The SSL certificate is issued by Let's Encrypt, which facilitates encrypted communications but does not guarantee legitimacy.

Currently, the domain remains active and continues to pose a high risk to users. The presence on multiple detection platforms and blocklists shows it has been recognized as malicious by the security community. Users should avoid interacting with the domain and never enter credentials or personal information. Organizations should consider blocking this domain at the network level and educate users on identifying phishing attempts hosted on legitimate platforms like GitHub Pages. Continuous monitoring and reporting to threat intelligence feeds will support mitigation efforts.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: GitHub, Inc.
- IP: 185.199.108.153

## Detection Status
- VirusTotal: 16 vendors flagged
- Google Safe Browsing: FLAGGED
- Blocklists: 1 hits
  Lists: ["OpenPhish"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/f7d88de4-0603-4fd7-8a32-37ce0e1149f4
- PhishDestroy: https://phishdestroy.io/domain/seitentaisei1304.github.io/
- LLM endpoint: https://phishdestroy.io/domain/seitentaisei1304.github.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/seitentaisei1304.github.io/
Last updated: 2026-04-12