# unitedstatespharmacyshop.com — SUSPICIOUS > PhishDestroy identifies unitedstatespharmacyshop.com as a live credential theft site mimicking US pharmacies. 4 of 95 VirusTotal vendors detect it. ## Summary PhishDestroy has identified unitedstatespharmacyshop.com as an active credential theft site that impersonates legitimate US pharmacy storefronts, tricking visitors into surrendering login or payment details. This domain was registered on April 7, 2025 through NICENIC INTERNATIONAL GROUP CO., LIMITED and is currently resolving to IP address 141.98.11.218. Its SSL certificate is issued by Let’s Encrypt, giving it a false appearance of legitimacy. This domain was flagged by 4 of 95 VirusTotal security vendors at the time of analysis, placing it in the elevated risk category. The site has no verifiable connection to any genuine pharmacy chain, and its recent creation date indicates a rapid deployment intended to exploit consumer trust during peak purchase periods. Threat actors commonly use these short-lived domains to harvest credentials that can later be monetized on dark-web markets or leveraged for follow-on fraud. If you visited unitedstatespharmacyshop.com, immediately change any passwords you may have entered and review linked payment methods for unauthorized transactions. Use a reputable password manager to generate unique credentials for every online account. Report the domain to your email provider and credit-card issuer to block further attempts. Share this alert with family and colleagues to prevent wider victimization. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2025-04-07 10:37:35 - Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED - IP: 141.98.11.218 ## Detection Status - VirusTotal: 4 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/59940775-c4bb-49a0-a8fe-05018772f8ba - PhishDestroy: https://phishdestroy.io/domain/unitedstatespharmacyshop.com/ - LLM endpoint: https://phishdestroy.io/domain/unitedstatespharmacyshop.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/unitedstatespharmacyshop.com/ Last updated: 2026-03-27