# solarwise-b3tr.pages.dev — SUSPICIOUS

> solarwise-b3tr.pages.dev is a live generic phishing domain hosted on Cloudflare, distributing credential-stealing traps.

## Summary
PhishDestroy identifies solarwise-b3tr.pages.dev as an active generic phishing domain engaged in credential harvesting campaigns. The site is not a spoof of a specific brand but functions as a generic trap designed to dupe victims into surrendering login credentials under false pretenses. No known drainer kit signature has been extracted yet, suggesting either a bespoke or newly deployed phishing page generator rather than a reused kit. The page is delivered through a Cloudflare Pages route, a tactic commonly abused to evade takedowns and mask origin infrastructure.


Technical indicators for solarwise-b3tr.pages.dev align with elevated risk factors. VirusTotal flags the domain with 2 of 95 security engines detecting malicious content as of seed 724c2e. The domain is registered through Cloudflare, Inc., and resolves to IP 188.114.96.3, hosted within Cloudflare’s edge network. The SSL certificate is issued by Google Trust Services, a common practice for phishing sites to appear legitimate. Public blocklist telemetry shows at least two independent threat intelligence feeds have listed this domain, confirming ongoing circulation in phishing feeds.


Current status of solarwise-b3tr.pages.dev remains active as of the latest scan. Immediate response actions include domain takedown via Cloudflare Trust & Safety and IP de-listing at the network provider level. Users should avoid visiting the domain and block both the domain and IP in corporate and personal security controls. Despite active mitigation efforts, residual risk persists due to the use of legitimate hosting providers and rapid domain rotation tactics. Continuous monitoring is required to detect new iterations of this campaign under different subdomains or domains sharing the same infrastructure. Users are advised to rely on password managers and multi-factor authentication to mitigate the impact of credential theft.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.96.3

## Detection Status
- VirusTotal: 2 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/7438b04a-12bd-45e1-bc40-7a79379b3d33
- PhishDestroy: https://phishdestroy.io/domain/solarwise-b3tr.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/solarwise-b3tr.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/solarwise-b3tr.pages.dev/
Last updated: 2026-03-25