# usherkomugisha.com — MALICIOUS

> usherkomugisha.com is a high-risk phishing site flagged for social engineering. Avoid interacting and report suspicious activity immediately.

## Summary
PhishDestroy identifies usherkomugisha.com as a high-risk domain engaged in generic phishing activities. The threat level is elevated due to its clear intent to deceive users and potentially harvest sensitive information.

This domain, registered through NameCheap, Inc. on March 11, 2026, has raised multiple security concerns. VirusTotal analysis shows detection by 23 out of 95 security vendors. Additionally, Google Safe Browsing classifies it as a social engineering threat. The domain resolves to IP address 162.254.39.128 and currently appears on one security blocklist. The presence of an 'Index of /' page title suggests possible directory listing, a tactic sometimes used to mask malicious content.

Users are strongly advised to avoid accessing usherkomugisha.com and to remain vigilant against any phishing attempts linked to this domain. Given that the domain remains active, continuous monitoring and prompt reporting of suspicious encounters are critical. Employing robust security measures and up-to-date threat intelligence will help mitigate potential risks posed by this phishing site.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 200)
- Page title: Index of /

## Domain Intelligence
- Registered: 2026-03-11 15:07:01
- Registrar: NameCheap, Inc.
- Country: US
- IP: 162.254.39.128
- IP Country: US
- IP City: Phoenix
- IP Org: AS22612 Namecheap, Inc.
- Nameservers: ["dns1.namecheaphosting.com", "dns2.namecheaphosting.com"]
- SSL Issuer: Sectigo Limited / Sectigo Public Server Authentication CA DV R36

## Detection Status
- VirusTotal: 23 vendors flagged
  Vendors: ["Abusix", "ADMINUSLabs", "Criminal IP", "alphaMountain.ai", "BitDefender", "Cluster25", "CRDF", "CyRadar", "DNS8", "Emsisoft", "Fortinet", "G-Data", "Google Safebrowsing", "Gridinsoft", "Kaspersky", "Lionic", "Netcraft", "SafeToOpen", "Seclookup", "SOCRadar", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: FLAGGED
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ce204-dbd9-71cf-a202-72ff5355936d.png
- PhishDestroy: https://phishdestroy.io/domain/usherkomugisha.com/
- LLM endpoint: https://phishdestroy.io/domain/usherkomugisha.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/usherkomugisha.com/
Last updated: 2026-03-19