# t-mobile.ksjdhk.icu — MALICIOUS

> Stay safe from phishing risks posed by t-mobile.ksjdhk.icu. Avoid interactions and report suspicious activity immediately.

## Summary
PhishDestroy identifies t-mobile.ksjdhk.icu as a high-risk domain engaged in generic phishing activities. The domain is currently active and poses significant threats to user security, primarily aiming to deceive victims into disclosing sensitive information.

Supporting evidence highlights that t-mobile.ksjdhk.icu was registered recently on February 21, 2026, and resolves to IP address 172.67.163.122. It is registered through Gname.com Pte. Ltd., a registrar sometimes associated with suspicious domains. VirusTotal analysis flags this domain by 11 out of 95 security vendors, and it appears on a recognized security blocklist, underscoring its malicious intent and confirming its involvement in phishing campaigns.

Users are strongly advised to avoid visiting or interacting with t-mobile.ksjdhk.icu. Monitoring tools and endpoint protections should block access to this domain. PhishDestroy recommends reporting related suspicious emails or messages to your IT or security team immediately. The domain remains active, and ongoing vigilance is critical to prevent potential data compromise or credential theft linked to this phishing threat.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 530)

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Gname.com Pte. Ltd.
- Country: SG
- IP: 172.67.163.122
- Nameservers: ["A.SHARE-DNS.COM", "B.SHARE-DNS.NET"]
- SSL Issuer: WE1

## Detection Status
- VirusTotal: 11 vendors flagged
  Vendors: ["alphaMountain.ai", "Cluster25", "CRDF", "Emsisoft", "Fortinet", "G-Data", "Gridinsoft", "Netcraft", "SOCRadar", "Sophos", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019bfd31-f82a-70b8-803e-f294bf9794fe.png
- PhishDestroy: https://phishdestroy.io/domain/t-mobile.ksjdhk.icu/
- LLM endpoint: https://phishdestroy.io/domain/t-mobile.ksjdhk.icu/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/t-mobile.ksjdhk.icu/
Last updated: 2026-03-19