# store.workshoprewardvote.com — MALICIOUS

> store.workshoprewardvote.com is a high-risk phishing site. Avoid it now to protect your data. Learn more and stay safe with PhishDestroy.

## Summary
PhishDestroy identifies store.workshoprewardvote.com as a dangerous phishing domain designed to steal personal information. This site tricks users into believing it is a legitimate service, but its true intent is to harvest sensitive data such as login credentials, financial information, or identity details. Visiting this site puts users at significant risk of fraud and identity theft.

The phishing technique involves mimicking a trusted platform or offer, often by presenting fake rewards or incentives to lure visitors. Once users enter their information, it is captured by cybercriminals for malicious use. The domain was flagged by multiple security vendors and appears on a security blocklist, confirming its malicious nature. Fortunately, the domain is currently offline, reducing immediate risk, but awareness remains critical.

If someone has visited store.workshoprewardvote.com, they should immediately avoid inputting any personal information and run a full antivirus and anti-malware scan on their device. It is also advisable to change passwords for any accounts that might have been compromised and monitor financial statements for suspicious activity. Staying vigilant and cautious with unknown links is the best defense against phishing threats like this.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 0)
- Page title: IIS Windows Server

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Global Domain Group LLC
- Country: US
- IP: 172.67.180.231
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["brady.ns.cloudflare.com", "luciane.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 16 vendors flagged
  Vendors: ["ADMINUSLabs", "BitDefender", "Cluster25", "CRDF", "CyRadar", "Emsisoft", "Fortinet", "G-Data", "Gridinsoft", "Kaspersky", "Lionic", "Netcraft", "SOCRadar", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019bef29-a975-7377-b1cb-036d7c6e69a7.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/544949c1-d916-4ef8-bbd7-a4b8c150df16
- PhishDestroy: https://phishdestroy.io/domain/store.workshoprewardvote.com/
- LLM endpoint: https://phishdestroy.io/domain/store.workshoprewardvote.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/store.workshoprewardvote.com/
Last updated: 2026-03-19