# suiteapp.wixstudio.com — SUSPICIOUS > suiteapp.wixstudio.com mimics Wix Studio; hosts credential theft aimed at Wix users. VirusTotal: 0/95. Treat as HIGH RISK. Disconnect now. ## Summary PhishDestroy identifies suiteapp.wixstudio.com as an active brand impersonation endpoint currently under investigation for generic phishing. The domain masquerades as Wix Studio infrastructure (suiteapp.wixstudio.com) with the sole intent of harvesting user credentials under false pretenses. Technical analysis places this domain at a provisional high-risk level pending further behavioral correlation, but in-the-wild activity has been confirmed. suffixing wixstudio.com infrastructure, it resolves to a Google Cloud Platform address (34.144.206.118); the Let's Encrypt SSL certificate provides a veneer of legitimacy, despite its shared issuance profile across disposable landing pages. Current passive DNS and content analysis show zero detections on VirusTotal (0/95 engines), indicating the payload remains below the static detection threshold at this moment. Domain age and historical blocklist status are still being compiled; however, the presence of a live login form with Wix-branded styling strongly suggests a campaign targeting Wix account holders. Mitigation requires immediate distrust at the network level: block the IP 34.144.206.118 and the domain suiteapp.wixstudio.com in DNS and firewall policies. Users who may have entered credentials should revoke the exposed password via an account-recovery workflow from an isolated, known-good device and enable Wix’s two-factor authentication. Security teams should log any outbound post-compromise callbacks for behavioral IOC correlation, especially TLS handshakes toward 34.144.206.118 on ports 443/8443. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: REGISTRAR_NOT_FOUND - IP: 34.144.206.118 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/c60207b6-1324-4567-88b7-1bc385d172dd - PhishDestroy: https://phishdestroy.io/domain/suiteapp.wixstudio.com/ - LLM endpoint: https://phishdestroy.io/domain/suiteapp.wixstudio.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/suiteapp.wixstudio.com/ Last updated: 2026-03-22