# weexkn.com — SUSPICIOUS

> weexkn.com is a phishing domain flagged by 1 of 95 VirusTotal vendors. This site poses as a fake login portal to steal credentials.

## Summary
PhishDestroy identifies weexkn.com as an active phishing domain posing an elevated threat to end users. The domain is currently live and has been confirmed to engage in credential harvesting activities, likely impersonating a legitimate brand to deceive victims into surrendering sensitive information. This threat is classified as generic phishing due to its lack of targeted impersonation and broad, opportunistic tactics.

This domain was flagged by only 1 of 95 VirusTotal security vendors, indicating limited but confirmed malicious intent. It was registered through Gname.com Pte. Ltd., resolves to IP address 195.130.202.164, and was created on July 30, 2025. Notably, it utilizes a Let's Encrypt SSL certificate to appear legitimate. Despite its recent creation, the domain shows early signs of abuse, with low detection rates potentially due to its recency or subtle malicious payloads. Its infrastructure aligns with common phishing campaigns leveraging newly registered domains and trusted certificate authorities to evade detection.

Given its active status and confirmed malicious intent, weexkn.com represents an immediate risk to users who may encounter it via email, social media, or spoofed websites. Users are strongly advised to avoid accessing this domain entirely and report it to their security teams or through official abuse channels. Organizations should block weexkn.com and the associated IP address (195.130.202.164) at the network perimeter. Additionally, users who may have interacted with this domain should assume their credentials are compromised and initiate password resets and multi-factor authentication where applicable. Continuous monitoring for related domains registered through Gname.com Pte. Ltd. is recommended to prevent further propagation of this threat.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2025-07-30 15:13:22
- Registrar: Gname.com Pte. Ltd.
- IP: 195.130.202.164

## Detection Status
- VirusTotal: 1 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/75547b7f-719a-4fb1-8409-3dcadba1ad73
- PhishDestroy: https://phishdestroy.io/domain/weexkn.com/
- LLM endpoint: https://phishdestroy.io/domain/weexkn.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/weexkn.com/
Last updated: 2026-03-28