# un5nu885wq5t1nyda79cugcxxttg.login.authsharedepointsonline.top — MALICIOUS

> Domain authsharedepointsonline.top is flagged for credential phishing via a fake Microsoft 365 login page. VirusTotal detection rate: 18/95.

## Summary
PhishDestroy identifies active credential phishing operations linked to the domain authsharedepointsonline.top, which mimics legitimate Microsoft 365 login portals to harvest user credentials. This domain resolves to IP address 75.119.137.73 and employs a valid Let's Encrypt SSL certificate to appear trustworthy. Its primary objective is to deceive users into entering their login credentials under false pretenses, thereby enabling attackers to gain unauthorized access to sensitive accounts.

This domain was flagged by 18 out of 95 security vendors on VirusTotal and registered through NameSilo, LLC on April 08, 2026. It has also been blocked by Google Safe Browsing under the SOCIAL_ENGINEERING category, indicating its malicious intent. The combination of a recently created domain, a high-risk detection rate, and its participation in social engineering highlights the urgency of mitigating exposure to this threat.

Users who have visited this domain should immediately change their passwords for any accounts where they may have entered login credentials. Enable multi-factor authentication (MFA) wherever possible to add an additional layer of security. Run a full antivirus scan on the device used to access the domain to detect and remove any potential malware. Report the domain to your IT security team or through your organization's phishing reporting channels to aid in threat intelligence and mitigation efforts.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-04-08 07:48:34
- Registrar: NameSilo,LLC
- IP: 75.119.137.73

## Detection Status
- VirusTotal: 18 vendors flagged
- Google Safe Browsing: FLAGGED
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/un5nu885wq5t1nyda79cugcxxttg.login.authsharedepointsonline.top
- PhishDestroy: https://phishdestroy.io/domain/un5nu885wq5t1nyda79cugcxxttg.login.authsharedepointsonline.top/
- LLM endpoint: https://phishdestroy.io/domain/un5nu885wq5t1nyda79cugcxxttg.login.authsharedepointsonline.top/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/un5nu885wq5t1nyda79cugcxxttg.login.authsharedepointsonline.top/
Last updated: 2026-04-09