Issue ID 7a652ebf5c00 (PHISHING URL)

https://safepal.page/

Generated at 2025-02-06 20:15:08 GMT+2:00

Report About Glossary
EN flag EN
EN flag EN
RU flag RU
ZH flag ZH
DE flag DE
ES flag ES
JA flag JA
IS flag IS
This incident is currently under investigation.

APVA found evidence that URL is currently hosting a phishing attack against Safepal Wallet.

Related issues

URL Details

IP address 185.232.204.56
Country Finland flag Finland
Registrar1API GmbH
RegistryCharleston Road Registry Inc.
Netblock ownerAS50053 Individual Entrepreneur Anton Levin

WHOIS Information

Domain Name: safepal.page
Registry Domain ID: E0C19D423-PAGE
Registrar WHOIS Server: whois.1api.net
Registrar URL: http://www.1API.net
Updated Date: 2025-01-24T12:20:48Z
Creation Date: 2025-01-19T12:20:48Z
Registry Expiry Date: 2026-01-19T12:20:48Z
Registrar: 1API GmbH
Registrar IANA ID: 1387
Registrar Abuse Contact Email: [email protected]
Registrar Abuse Contact Phone: +49.68949396850
Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
Registry Registrant ID: REDACTED FOR PRIVACY
Registrant Name: REDACTED FOR PRIVACY
Registrant Organization: ant bel
Registrant Street: REDACTED FOR PRIVACY
Registrant City: REDACTED FOR PRIVACY
Registrant State/Province: Hong Kong
Registrant Postal Code: REDACTED FOR PRIVACY
Registrant Country: HK
Registrant Phone: REDACTED FOR PRIVACY
Registrant Fax: REDACTED FOR PRIVACY
Registrant Email: Please query the WHOIS server of the owning registrar identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.
Registry Admin ID: REDACTED FOR PRIVACY
Admin Name: REDACTED FOR PRIVACY
Admin Organization: REDACTED FOR PRIVACY
Admin Street: REDACTED FOR PRIVACY
Admin City: REDACTED FOR PRIVACY
Admin State/Province: REDACTED FOR PRIVACY
Admin Postal Code: REDACTED FOR PRIVACY
Admin Country: REDACTED FOR PRIVACY
Admin Phone: REDACTED FOR PRIVACY
Admin Fax: REDACTED FOR PRIVACY
Admin Email: Please query the WHOIS server of the owning registrar identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.
Registry Tech ID: REDACTED FOR PRIVACY
Tech Name: REDACTED FOR PRIVACY
Tech Organization: REDACTED FOR PRIVACY
Tech Street: REDACTED FOR PRIVACY
Tech City: REDACTED FOR PRIVACY
Tech State/Province: REDACTED FOR PRIVACY
Tech Postal Code: REDACTED FOR PRIVACY
Tech Country: REDACTED FOR PRIVACY
Tech Phone: REDACTED FOR PRIVACY
Tech Fax: REDACTED FOR PRIVACY
Tech Email: Please query the WHOIS server of the owning registrar identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.
Registry Billing ID: REDACTED FOR PRIVACY
Billing Name: REDACTED FOR PRIVACY
Billing Organization: REDACTED FOR PRIVACY
Billing Street: REDACTED FOR PRIVACY
Billing City: REDACTED FOR PRIVACY
Billing State/Province: REDACTED FOR PRIVACY
Billing Postal Code: REDACTED FOR PRIVACY
Billing Country: REDACTED FOR PRIVACY
Billing Phone: REDACTED FOR PRIVACY
Billing Fax: REDACTED FOR PRIVACY
Billing Email: Please query the WHOIS server of the owning registrar identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.
Name Server: a.dnspod.com
Name Server: c.dnspod.com
DNSSEC: unsigned
URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/


Please query the WHOIS server of the owning registrar identified in this
output for information on how to contact the Registrant, Admin, or Tech
contact of the queried domain name.

You may also request underlying Registrant data via ICANN's RDRS service
(https://rdrs.icann.org/).

WHOIS information is provided by Charleston Road Registry Inc. (CRR) solely
for query-based, informational purposes. By querying our WHOIS database, you
are agreeing to comply with these terms
(https://www.registry.google/about/whois-disclaimer.html) and acknowledge
that your information will be used in accordance with CRR's Privacy Policy
(https://www.registry.google/about/privacy.html), so please read those
documents carefully.  Any information provided is "as is" without any
guarantee of accuracy. You may not use such information to (a) allow,
enable, or otherwise support the transmission of mass unsolicited,
commercial advertising or solicitations; (b) enable high volume, automated,
electronic processes that access the systems of CRR or any ICANN-Accredited
Registrar, except as reasonably necessary to register domain names or modify
existing registrations; or (c) engage in or support unlawful behavior. CRR
and may modify these terms at any time.

Domain Scan Results

Security Vendor Result
VirusTotal icon VirusTotal 7/94
Cisco Talos icon Cisco Talos Malware
Norton icon Norton Warning
Palo Alto icon Palo Alto Phishing
Quad9 icon Quad9 Listed

Was this report sent incorrectly?

Please report the error to us at [email protected].