# sunil707088.github.io — MALICIOUS > sunil707088.github.io is a generic phishing site flagged by 7 of 95 VirusTotal vendors targeting credential theft. Act now to block access. ## Summary PhishDestroy identifies sunil707088.github.io as an active generic phishing domain engaged in credential theft operations as of seed 44c235. This domain presents a high-risk threat to users through a deceptive phishing interface designed to harvest login credentials. PhishDestroy analysis confirms the site remains operational despite detection efforts. The threat involves impersonation of common login portals to trick users into surrendering sensitive authentication data. VirusTotal analysis reveals the domain is flagged by 7 of 95 security vendors, indicating partial detection coverage. The domain resolves to IP address 185.199.108.153 via GitHub, Inc. hosting infrastructure. The Let's Encrypt SSL certificate provides false legitimacy to the credential harvesting operation. Technical indicators show this infrastructure has maintained active status throughout monitoring periods with consistent threat delivery mechanisms. Security assessment reveals this domain operates with minimal trust indicators across multiple evaluation platforms. The 7% detection rate on VirusTotal suggests significant evasion capabilities against standard security measures. GitHub-hosted infrastructure combined with Let's Encrypt certificates creates a sophisticated threat vector that bypasses traditional domain reputation checks. The persistent active status indicates ongoing malicious operations despite partial vendor detection. Risk assessment places this threat at high severity due to the credential theft mechanism and potential for cascading account compromises across multiple platforms. Immediate action is required to prevent credential theft incidents. Network administrators should implement DNS blocking for sunil707088.github.io at the firewall level. Users should avoid accessing this domain entirely and report any accidental exposure to their IT security teams. Security teams must investigate any logs showing communication with 185.199.108.153 for potential credential harvesting attempts. Implement web filtering rules to block access to this domain across all corporate and personal devices. Consider this domain as a confirmed indicator of compromise and investigate any associated user accounts for suspicious authentication activity. ## Threat Details - Verdict: MALICIOUS - Site status: alive (HTTP ?) ## Domain Intelligence - Registrar: GitHub, Inc. - IP: 185.199.108.153 ## Detection Status - VirusTotal: 7 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/0fe714c6-66cc-4515-8ea9-7828fc833788 - PhishDestroy: https://phishdestroy.io/domain/sunil707088.github.io/ - LLM endpoint: https://phishdestroy.io/domain/sunil707088.github.io/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/sunil707088.github.io/ Last updated: 2026-04-14