# airdrops.jetxlm.com — MALICIOUS

> Beware of airdrops.jetxlm.com, a medium-risk crypto drainer domain now offline. Learn why this site posed a threat and how to stay safe.

## Summary
PhishDestroy has identified airdrops.jetxlm.com as a crypto drainer threat aimed at stealing digital assets. Crypto drainers are malicious sites that trick users into revealing wallet credentials or private keys, resulting in the loss of cryptocurrency. Protecting against such threats is critical as digital currency theft can lead to irreversible financial damage.

airdrops.jetxlm.com was registered on February 21, 2026, and was flagged by 5 out of 95 VirusTotal security vendors. It also appeared on one known blocklist. The domain currently shows a "404 Not Found" page and is offline, indicating it may have been taken down or abandoned. This infrastructure was likely used to impersonate legitimate airdrop or crypto distribution services to deceive victims.

Users are advised to avoid interacting with suspicious domains similar to airdrops.jetxlm.com, especially those offering unsolicited crypto giveaways or requiring sensitive wallet information. Always verify URLs and use trusted sources when managing cryptocurrencies. If you encounter this domain or related suspicious activity, report it to your security team or appropriate authorities to help prevent further victimization.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 404)
- Scam type: Airdrop Scam
- Page title: 404 Not Found

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Nameservers: ["dina.ns.cloudflare.com", "ivan.ns.cloudflare.com"]

## Detection Status
- VirusTotal: 5 vendors flagged
  Vendors: ["alphaMountain.ai", "CRDF", "Fortinet", "Trustwave", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019928ef-0310-72b9-893a-eb74c30e161f.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/184a10f8-87e2-4f02-87a0-3d7f32c1bd10
- PhishDestroy: https://phishdestroy.io/domain/airdrops.jetxlm.com/
- LLM endpoint: https://phishdestroy.io/domain/airdrops.jetxlm.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/airdrops.jetxlm.com/
Last updated: 2026-03-19