# shantanu024.github.io — MALICIOUS

> PhishDestroy identifies shantanu024.github.io as a brand impersonation phishing site posing as a crypto wallet.

## Summary
PhishDestroy classifies shantanu024.github.io as an elevated-risk brand impersonation phishing domain designed to steal cryptocurrency wallet credentials.  

This domain was flagged by PhishDestroy’s automated pipeline on seed e4e4ca. VirusTotal’s consortium of 95 security engines detected 9 positive matches, indicating active malicious hosting. The site resolves to IP 185.199.108.153 via GitHub Pages infrastructure under the GitHub, Inc. registrar. No creation date was disclosed by GitHub, but the page has been active long enough to accumulate nine detections across VirusTotal’s vendor network.  

Mitigation for brand impersonation phishing involves immediate network blocklisting of the domain and its resolving IP. Users should refrain from entering any credentials or wallet information. Enterprises are advised to push IOCs (Indicators of Compromise) to firewalls, proxies, and endpoint protection platforms. If accidental exposure occurs, rotate wallet credentials and revoke session tokens immediately to prevent fund drainage.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: GitHub, Inc.
- IP: 185.199.108.153

## Detection Status
- VirusTotal: 9 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/98950010-ae58-4b5d-95e3-7a78384c710b
- PhishDestroy: https://phishdestroy.io/domain/shantanu024.github.io/
- LLM endpoint: https://phishdestroy.io/domain/shantanu024.github.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/shantanu024.github.io/
Last updated: 2026-03-24