# shop.tiktokmall.eu.cc — MALICIOUS

> shop.tiktokmall.eu.cc is a high-risk phishing site flagged for social engineering. Avoid this domain and protect your data. Stay vigilant with PhishDestroy.

## Summary
PhishDestroy identifies shop.tiktokmall.eu.cc as a high-risk generic phishing domain actively targeting unsuspecting users. Classified under social engineering threats, this domain attempts to mimic legitimate online shopping platforms to deceive victims into disclosing sensitive information. The phishing classification is supported by Google Safe Browsing labeling it as SOCIAL_ENGINEERING, indicating a high likelihood of fraudulent activity.

Technical indicators reveal the domain resolves to the IP address 47.238.113.202 and is registered through Gname.com Pte. Ltd. Despite the domain’s creation date being listed as October 13, 1997, which is unusually old for a phishing domain, multiple security vendors on VirusTotal have flagged it (13 out of 95), strengthening the case for its malicious use. The domain’s structure, featuring a subdomain resembling a popular e-commerce brand, further suggests an attempt to exploit brand trust for phishing purposes.

Currently active and posing a significant risk, shop.tiktokmall.eu.cc remains under continuous monitoring by PhishDestroy. Users are strongly advised to avoid interaction with this domain to prevent credential theft or personal data compromise. Security professionals should consider blocking this domain in network defenses and educating users about the risks associated with deceptive URLs mimicking well-known shopping sites.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 200)
- Page title: TikTok-Wholesale

## Domain Intelligence
- Registered: 2026-03-07 13:07:01
- Registrar: Gname.com Pte. Ltd.
- IP: 47.238.113.202
- Nameservers: a.rsp-dns.com b.rsp-dns.com

## Detection Status
- VirusTotal: 21 vendors flagged
  Vendors: ["ADMINUSLabs", "BitDefender", "CRDF", "Cluster25", "Criminal IP", "DNS8", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Google Safebrowsing", "Gridinsoft", "Kaspersky", "Lionic", "MalwareURL", "Netcraft", "PhishLabs", "SOCRadar", "Sophos", "Trustwave", "VIPRE", "alphaMountain.ai"]
- Google Safe Browsing: FLAGGED
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Live Page Content

### Page Text
404 Not Found 404 Not Found nginx

## Evidence
- Screenshot: https://i.ibb.co/JwGvQG6W/288fe6763a29.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/d80c09b6-777b-4801-bda2-2fda7b663577
- PhishDestroy: https://phishdestroy.io/domain/shop.tiktokmall.eu.cc/

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/shop.tiktokmall.eu.cc/
Last updated: 2026-03-14