# sesbinancesupportconnect-cmd.github.io — SUSPICIOUS

> sesbinancesupportconnect-cmd.github.io is a brand impersonation site mimicking Binance to deploy a crypto drainer.

## Summary
PhishDestroy identifies sesbinancesupportconnect-cmd.github.io as an active brand impersonation domain targeting Binance users, designed to steal cryptocurrency via a crypto drainer. This GitHub-hosted page exploits the Binance brand to trick visitors into connecting malicious wallets or revealing credentials, posing a direct threat to digital assets.  This domain was flagged under investigation due to its clear intent to deceive, with key indicators including registration through GitHub, resolution to IP 185.199.108.153, and a Let's Encrypt SSL certificate masking malicious activity. VirusTotal currently shows zero detections (0/95), highlighting how quickly new impersonation domains can evade automated scanning. The presence of the unique seed identifier “5d143d” in detection logs confirms its classification as a crypto drainer under active monitoring by security researchers.  If you visited sesbinancesupportconnect-cmd.github.io, assume exposure: disconnect any connected wallets immediately using tools like WalletConnect or manual disconnection, revoke any granted permissions via blockchain explorers like Etherscan or BscScan, and scan your device with updated antivirus software. Never enter credentials or connect a wallet to untrusted Binance lookalikes—verify all domains against PhishDestroy before interaction.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)
- Target brand: Binance

## Domain Intelligence
- Registrar: GitHub, Inc.
- IP: 185.199.108.153

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/604891da-9b37-4d05-ac29-c2cfceb750c9
- PhishDestroy: https://phishdestroy.io/domain/sesbinancesupportconnect-cmd.github.io/
- LLM endpoint: https://phishdestroy.io/domain/sesbinancesupportconnect-cmd.github.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/sesbinancesupportconnect-cmd.github.io/
Last updated: 2026-03-26