# xceptional-concrete.pages.dev — SUSPICIOUS > xceptional-concrete.pages.dev hosts a fake login form phishing page. Cloudflare IP 172.66.44.80 shows 0/95 detections. Check the full report. ## Summary PhishDestroy identifies xceptional-concrete.pages.dev as a live phishing domain impersonating a legitimate login portal to harvest credentials. This campaign employs a generic but effective fake login form with no detectable malware payload, relying instead on social engineering to trick victims into submitting sensitive information. The domain remains under active investigation as analysts assess its evolving tactics and potential for broader targeting. This domain was flagged with a risk level of under_investigation and exhibits indicators consistent with credential phishing. Key data points include registration through Cloudflare, Inc., resolution to IP address 172.66.44.80, and deployment of a Let's Encrypt SSL certificate to enhance authenticity. VirusTotal currently reports 0 detections out of 95 engines, suggesting minimal antivirus coverage. The domain leverages Cloudflare Pages for hosting, obscuring backend infrastructure while maintaining high availability. No confirmed inclusion on major blocklists has been observed at this time. Mitigation requires immediate isolation from corporate networks and user awareness campaigns highlighting the absence of HTTPS alone as insufficient assurance. Enterprises should block the domain at DNS and firewall levels, particularly the resolving IP 172.66.44.80. Users encountering this domain should be instructed to verify URLs via official channels and report suspicious login prompts. Security teams should monitor for authentication attempts from compromised credentials and correlate with this domain's evolving infrastructure. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 172.66.44.80 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/0a9b5f34-6728-4b76-a57b-cb0dd1fdb5e2 - PhishDestroy: https://phishdestroy.io/domain/xceptional-concrete.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/xceptional-concrete.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/xceptional-concrete.pages.dev/ Last updated: 2026-03-30