# tebbitabcd.shop — SUSPICIOUS

> tebbitabcd.shop is a recently registered domain (July 11, 2025) hosting a fake Cash App phishing site. Resolves to 188.114.97.3, undetected on VirusTotal (0/95).

## Summary
PhishDestroy identifies tebbitabcd.shop as an active generic phishing domain impersonating Cash App payment services. The domain was flagged under seed 067921 for hosting fraudulent login portals designed to harvest user credentials and payment details. Initial analysis confirms the infrastructure is operational, with no detections recorded on VirusTotal as of the latest scan.

This domain was flagged for Cash App phishing under seed 067921. Key technical indicators include a Google Trust Services SSL certificate, resolution to IP 188.114.97.3, registration through GNAME.COM PTE. LTD. on July 11, 2025, and zero detections on VirusTotal (0/95). The domain remains unblocked across major security platforms, posing an elevated risk to unsuspecting users. The registration date suggests a recently deployed campaign, likely leveraging the trustworthiness of Google's SSL infrastructure to appear legitimate.

Users should immediately block tebbitabcd.shop at the network level and avoid all associated URLs. Enable multi-factor authentication (MFA) on Cash App and verify transactions through official channels. Report any interactions with this domain to Cash App support and local cybercrime units. Organizations should update firewall rules to block 188.114.97.3 and monitor for lateral movement if this domain was accessed on internal systems.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2025-07-11 10:22:47
- Registrar: GNAME.COM PTE. LTD.
- IP: 188.114.97.3

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/97b18de4-441e-48c6-9841-198806e265ec
- PhishDestroy: https://phishdestroy.io/domain/tebbitabcd.shop/
- LLM endpoint: https://phishdestroy.io/domain/tebbitabcd.shop/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/tebbitabcd.shop/
Last updated: 2026-03-28