# signamap.com — SUSPICIOUS

> PhishDestroy identifies signamap.com as a live Microsoft 365 phishing page. VirusTotal shows 0/95 detections right now. View the full report.

## Summary
PhishDestroy has flagged signamap.com as a credential-harvesting phishing site impersonating Microsoft 365 login pages. The domain resolves to 104.21.22.131 and is protected by a Let’s Encrypt SSL certificate, lending it a deceptive air of legitimacy. At present, VirusTotal engines report 0 detections out of 95 scanners, indicating this page is still under the radar of most antivirus platforms. The domain was created on March 6, 2026, and is registered through Cloudflare, Inc., with no prior clean history to offset its suspicious freshness. Threat intelligence systems have not yet added signamap.com to their blocklists, leaving users exposed until signatures catch up.  This phishing page specifically targets Microsoft 365 users, deploying spoofed login forms to harvest corporate email credentials and potentially sensitive data. The domain’s recent creation date and use of Cloudflare’s privacy-protection services suggest an attempt to evade detection and takedown. While the SSL certificate and Cloudflare infrastructure may appear benign, they are being abused to mask the page’s malicious intent. Cybersecurity teams should monitor for any spikes in failed login attempts or reports of compromised accounts linked to signamap.com.  If you or someone in your organization has visited signamap.com or entered credentials on the page, immediately reset the associated Microsoft 365 password and enable multi-factor authentication. Review account logs for any unusual activity and report the incident to your IT security team. Avoid accessing the domain further, and consider blocking 104.21.22.131 at the network perimeter. Stay vigilant for follow-on phishing attempts leveraging the harvested credentials.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-06 18:02:49
- Registrar: Cloudflare, Inc.
- IP: 104.21.22.131

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/7c9fda4b-115b-4d96-8435-376284ee65de
- PhishDestroy: https://phishdestroy.io/domain/signamap.com/
- LLM endpoint: https://phishdestroy.io/domain/signamap.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/signamap.com/
Last updated: 2026-03-22