# xennoexecs.github.io — SUSPICIOUS

> xennoexecs.github.io hosts a generic phishing page with 0/95 VirusTotal detections. This GitHub-hosted site lures users into credential theft—avoid interaction.

## Summary
PhishDestroy identifies xennoexecs.github.io as a live phishing domain designed to steal user credentials or sensitive data. This page mimics legitimate login portals to trick visitors into entering personal information, which attackers then harvest for fraudulent use.

This domain was flagged after VirusTotal scans returned 0 detections out of 95 security engines, indicating it remains under the radar. It was registered through GitHub, Inc. and resolved to IP 185.199.110.153 using a Let's Encrypt SSL certificate, blending in with trusted services while distributing malicious content.

If you visited this site, avoid entering any login details or personal data. Clear your browser cache and cookies for this domain, and run a full antivirus scan. If you submitted credentials, change passwords immediately and enable multi-factor authentication where possible. Monitor accounts for unusual activity and report any unauthorized transactions to your bank or service provider.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: GitHub, Inc.
- IP: 185.199.110.153

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/b4171293-88eb-4b65-9135-ed8a79df18e1
- PhishDestroy: https://phishdestroy.io/domain/xennoexecs.github.io/
- LLM endpoint: https://phishdestroy.io/domain/xennoexecs.github.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/xennoexecs.github.io/
Last updated: 2026-03-30