# t-mobile.obudc.cc — MALICIOUS

> t-mobile.obudc.cc is identified as a high-risk phishing domain now offline. Avoid it and verify URLs before sharing personal info.

## Summary
PhishDestroy identifies t-mobile.obudc.cc as a generic phishing threat aiming to impersonate legitimate T-Mobile services to deceive users. The domain poses significant risks by attempting to steal sensitive login credentials or personal information, which can lead to identity theft or financial loss. High-risk phishing sites like this undermine user trust in legitimate brands and can cause widespread damage if accessed.

The domain t-mobile.obudc.cc was registered on February 21, 2026, through Gname.com Pte. Ltd. It resolved to the IP address 188.114.97.3 and appeared on at least one known security blocklist. VirusTotal flagged this domain as malicious according to 15 out of 95 participating security vendors. However, at the time of reporting, the domain is currently offline with connection timeouts, indicating possible takedown or abandonment.

Users are strongly advised not to interact with t-mobile.obudc.cc or share any personal information if encountered. Always verify URLs directly through official carrier websites or trusted sources. Utilizing anti-phishing browser tools, keeping software updated, and being cautious with unexpected communication can reduce the risk of falling victim to such scams. PhishDestroy recommends reporting suspicious domains to authorities and security services promptly to help mitigate these threats.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 0)
- Page title: obudc.cc | 522: Connection timed out

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Gname.com Pte. Ltd.
- Country: SG
- IP: 188.114.97.3
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["james.ns.cloudflare.com", "lucy.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 15 vendors flagged
  Vendors: ["ADMINUSLabs", "Criminal IP", "Cluster25", "CRDF", "CyRadar", "ESET", "Emsisoft", "Forcepoint ThreatSeeker", "Fortinet", "Gridinsoft", "Netcraft", "Seclookup", "SOCRadar", "Sophos", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019bcc27-4c9d-7453-bd22-369456d7caea.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/fdb0e2fd-af3b-4efc-a655-5477adaffdda
- PhishDestroy: https://phishdestroy.io/domain/t-mobile.obudc.cc/
- LLM endpoint: https://phishdestroy.io/domain/t-mobile.obudc.cc/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/t-mobile.obudc.cc/
Last updated: 2026-03-19