# t-mobile.wbndg.icu — MALICIOUS

> t-mobile.wbndg.icu is linked to phishing risks. Avoid sharing personal info and verify URLs carefully to stay safe online.

## Summary
PhishDestroy identifies t-mobile.wbndg.icu as a high-risk phishing domain designed to deceive users by mimicking legitimate T-Mobile services. Classified under generic phishing threats, the domain aims to capture sensitive user credentials or financial details through fraudulent means. The presence of "t-mobile" in the domain name is likely intended to exploit brand recognition and user trust.

Technical analysis reveals that t-mobile.wbndg.icu was registered recently, on January 12, 2026, through Gname.com Pte. Ltd., a registrar sometimes associated with less stringent oversight. The domain resolves to IP address 104.21.66.212 and is currently flagged on at least one security blocklist. VirusTotal scans report that 14 out of 95 security vendors recognize it as malicious, confirming its suspicious infrastructure and intent.

The domain remains active and continues to pose a threat to unsuspecting users. PhishDestroy recommends avoiding interaction with the site, refraining from entering any personal or financial information, and reporting the domain to security authorities if encountered. Users should always verify official communications directly through trusted channels to mitigate the risk of phishing attacks.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 530)

## Domain Intelligence
- Registered: 2026-01-12 10:07:38
- Registrar: Gname.com Pte. Ltd.
- Country: SG
- IP: 104.21.66.212
- Nameservers: ["A.SHARE-DNS.COM", "B.SHARE-DNS.NET"]
- SSL Issuer: WE1

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["ADMINUSLabs", "BitDefender", "Cluster25", "CRDF", "CyRadar", "Fortinet", "G-Data", "Gridinsoft", "Lionic", "MalwareURL", "SOCRadar", "Sophos", "Trustwave", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019bbf2b-6e6c-75bd-bee5-4297218fbd1d.png
- PhishDestroy: https://phishdestroy.io/domain/t-mobile.wbndg.icu/
- LLM endpoint: https://phishdestroy.io/domain/t-mobile.wbndg.icu/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/t-mobile.wbndg.icu/
Last updated: 2026-03-19