# www.dropboxenterprise.com — SUSPICIOUS > PhishDestroy identifies dropboxenterprise.com as a Dropbox Enterprise phishing scam. VT 0/95 detections. Check the full report. ## Summary PhishDestroy identifies dropboxenterprise.com as an active generic phishing domain impersonating Dropbox Enterprise services. The domain leverages deceptive branding to trick users into divulging sensitive credentials or installing malware under the guise of legitimate file-sharing tools. Given the absence of antivirus detections and the domain’s unresolved status, this threat remains under active investigation by cybersecurity teams to determine the full scope of malicious infrastructure tied to the campaign seed a6099d. This domain was flagged with zero detections out of 95 VirusTotal engines, indicating limited or delayed recognition by security vendors. It resolves to IP address 15.197.225.128 and is registered through GoDaddy.com, LLC, using a GoDaddy SSL certificate issued after domain creation on October 13, 2015. The age of the domain and use of a major registrar and CA suggest an attempt to appear legitimate while hosting a spoofed login portal targeting Dropbox Enterprise users. Mitigation for this threat involves avoiding any interaction with dropboxenterprise.com, including clicking links or entering credentials. Enterprises using Dropbox should verify all file-sharing domains via official channels and implement browser-based warnings or DNS filtering using threat intelligence feeds. Users who suspect exposure should reset account passwords via Dropbox.com, enable two-factor authentication, and scan devices for malware. Report the domain to Dropbox’s abuse team and PhishDestroy for further analysis to prevent broader propagation. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2015-10-13 23:22:42 - Registrar: GoDaddy.com, LLC - IP: 15.197.225.128 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/0b4cef5f-7cfc-4aae-8ca3-4bddab3b9dfd - PhishDestroy: https://phishdestroy.io/domain/www.dropboxenterprise.com/ - LLM endpoint: https://phishdestroy.io/domain/www.dropboxenterprise.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/www.dropboxenterprise.com/ Last updated: 2026-03-24