# app.yieldbay.life — SUSPICIOUS

> app.yieldbay.life is a live crypto drainer site with 0/95 VirusTotal detections. This domain mimics cryptocurrency platforms to steal wallet credentials.

## Summary
PhishDestroy identifies app.yieldbay.life as an active crypto drainer posing as a legitimate yield farming application. This malicious domain is engineered to trick cryptocurrency users into connecting their digital wallets under the guise of earning rewards, only to drain stored assets without consent. The site leverages deceptive branding and urgent language to pressure visitors into connecting wallets and authorizing fraudulent transactions. Security teams should treat this domain as a high-risk threat actor endpoint due to its active infrastructure and zero current detections on VirusTotal.  This domain was flagged through behavioral analysis of its domain structure, SSL certificate (issued by Let's Encrypt), and IP resolution to 188.114.97.3. As of the latest scan, VirusTotal shows 0 out of 95 security engines detecting this domain. The domain is registered through a privacy-protected registrar, and the IP is hosted on Cloudflare infrastructure, which is commonly abused to mask malicious operations. While the SSL certificate adds a veneer of legitimacy, it does not indicate safety—especially when paired with suspicious naming conventions and lack of corporate transparency.  If you or your users have visited app.yieldbay.life, disconnect all wallets immediately, revoke any unauthorized connections via your wallet interface, and scan devices for malware. Report the domain to your browser blocklists and network security teams. Do not interact with any prompts to connect or sign transactions. Monitor wallet addresses for unauthorized transfers and consider rotating private keys if compromised. This domain is under active investigation, and blocking at the network level is strongly recommended.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: REGISTRAR_NOT_FOUND
- IP: 188.114.97.3

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/a09e2cfa-4ff3-44fd-8247-f06bd3e27ce1
- PhishDestroy: https://phishdestroy.io/domain/app.yieldbay.life/
- LLM endpoint: https://phishdestroy.io/domain/app.yieldbay.life/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/app.yieldbay.life/
Last updated: 2026-03-23