# support.m365-microsoft.com — MALICIOUS

> support.m365-microsoft.com is a Microsoft 365 phishing domain with 6/95 VirusTotal detections. Review the full threat analysis and safety recommendations.

## Summary
PhishDestroy identifies support.m365-microsoft.com as an active Microsoft 365 brand impersonation domain designed to deceive users into divulging credentials or installing malware under the false pretense of official Microsoft support.  This domain poses an elevated risk by mimicking Microsoft’s legitimate support infrastructure. Evidence includes a VirusTotal detection ratio of 6/95 security vendors, registration via Dynadot Inc on July 12, 2023, and resolution to IP 20.50.64.14. The fraudulent site uses a Let's Encrypt SSL certificate to appear legitimate while hosting spoofed login portals tailored to harvest Microsoft 365 credentials. The domain has been flagged by multiple threat intelligence feeds, highlighting its use in phishing campaigns targeting enterprise and consumer Microsoft accounts.  Users who visited support.m365-microsoft.com should immediately disconnect from the network, clear browser cache and cookies associated with Microsoft domains, and run a full antivirus scan. Change Microsoft 365 passwords only from a verified URL (login.microsoftonline.com), enable multi-factor authentication, and revoke any sessions initiated from unknown devices. Report the domain to Microsoft via the [Phish Report Tool](https://www.microsoft.com/en-us/wdsi/support/report-unsafe-site) and your organization’s security team if accessed on a corporate device.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)
- Target brand: Microsoft

## Domain Intelligence
- Registered: 2023-07-12 19:43:05
- Registrar: Dynadot Inc
- IP: 20.50.64.14

## Detection Status
- VirusTotal: 6 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/91eb7372-100c-4b4d-b1ac-5a52dc8e2c6b
- PhishDestroy: https://phishdestroy.io/domain/support.m365-microsoft.com/
- LLM endpoint: https://phishdestroy.io/domain/support.m365-microsoft.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/support.m365-microsoft.com/
Last updated: 2026-03-28