# yellowcex.app — MALICIOUS

> yellowcex.app flagged for phishing risks with social engineering warnings. Learn what this means and how to protect yourself from potential scams.

## Summary
PhishDestroy identifies yellowcex.app as an active domain engaged in potential phishing activities, specifically categorized under generic phishing threats. This classification is critical due to the use of social engineering tactics aimed at deceiving users into divulging sensitive information. While the domain is currently under investigation, caution is advised as phishing schemes can lead to severe financial loss and identity theft.

yellowcex.app resolves to the IP address 188.114.97.3 and is currently not detected by VirusTotal’s scanning engines, showing zero flags across 95 security vendors. However, Google Safe Browsing alerts categorize this domain as "SOCIAL_ENGINEERING," indicating that it may pose deceptive risks to end users. The lack of vendor detections suggests this domain is either newly registered or yet to be widely reported, but its infrastructure points toward suspicious intent.

Users are urged to avoid interacting with yellowcex.app or providing any personal details on this site. It is recommended to verify URLs carefully, refrain from clicking unknown links related to this domain, and use updated security software for real-time protection. Reporting suspicious activity involving yellowcex.app to cybersecurity authorities can help mitigate risk and prevent further phishing attempts.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 200)
- Page title: Buy

## Domain Intelligence
- Registered: 2026-03-03 19:07:02
- Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com
- IP: 188.114.97.3
- Nameservers: memphis.ns.cloudflare.com veronica.ns.cloudflare.com

## Detection Status
- VirusTotal: 19 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "CRDF", "CyRadar", "Ermes", "ESET", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Google Safebrowsing", "Gridinsoft", "Kaspersky", "Lionic", "SOCRadar", "Sophos", "URLQuery", "VIPRE", "Webroot"]
- Google Safe Browsing: FLAGGED
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Live Page Content

### Page Text
Your request was blocked.

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cb4ba-19d0-759f-8699-4f545dc6f6ed.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/75f9b687-f0c9-4dec-8121-9883a79a7952
- PhishDestroy: https://phishdestroy.io/domain/yellowcex.app/

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/yellowcex.app/
Last updated: 2026-03-14