# www.mangroup-suxjg.cyou — SUSPICIOUS > PhishDestroy identifies www.mangroup-suxjg.cyou as a credential theft phishing site flagged by just 1/95 VirusTotal vendors. ## Summary PhishDestroy identifies www.mangroup-suxjg.cyou as a credential theft phishing site that impersonates a legitimate business to trick users into entering their login credentials. This domain was flagged by only 1 out of 95 VirusTotal security vendors, indicating low but present detection. The domain resolved to IP address 104.21.46.141 and was registered on August 23, 2025 through Gname.com Pte. Ltd., a registrar often associated with high-risk domains. A Let’s Encrypt SSL certificate suggests the operators are attempting to appear legitimate. This domain was created recently—on August 23, 2025—suggesting it is part of a fast-moving campaign. Its low detection rate makes it particularly dangerous, as most security tools have not yet blacklisted it. The use of a Let’s Encrypt certificate further enhances its credibility, tricking users into believing it is a trusted site. If you visited www.mangroup-suxjg.cyou, do not enter any personal or login information. Immediately change any passwords you may have entered on the site and enable two-factor authentication on all accounts. Scan your device for malware, especially if the site requested downloads or sensitive data. Report the domain to your organization’s security team or through platforms like Google Safe Browsing to help block future access. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2025-08-23 09:19:20 - Registrar: Gname.com Pte. Ltd. - IP: 104.21.46.141 ## Detection Status - VirusTotal: 1 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/b456f210-2f98-440a-b438-54a7e944ae6e - PhishDestroy: https://phishdestroy.io/domain/www.mangroup-suxjg.cyou/ - LLM endpoint: https://phishdestroy.io/domain/www.mangroup-suxjg.cyou/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/www.mangroup-suxjg.cyou/ Last updated: 2026-03-22