# gagajazz.com — MALICIOUS

> PhishDestroy identifies gagajazz.com as a credential theft site with 16/95 VirusTotal detections. This domain poses as a legitimate service to harvest login.

## Summary
PhishDestroy identifies gagajazz.com as a credential theft domain designed to impersonate a legitimate jazz streaming service, likely targeting users to harvest login credentials and sensitive personal data. The site employs social engineering tactics to trick visitors into entering sensitive information under false pretenses, with a primary focus on credential theft and potential cryptocurrency wallet draining. While the domain has been active since 2005, its current threat profile has escalated due to recent phishing campaigns observed in security feeds.  This domain was flagged by PhishDestroy with high risk due to overwhelming evidence of malicious intent. VirusTotal reports that 16 out of 95 security vendors detected gagajazz.com as malicious, indicating widespread suspicion within the cybersecurity community. The domain is registered through ONLINE SAS, a French registrar known for serving high-risk domains. It resolves to IP address 62.210.16.61, which has been associated with multiple malicious activities. Notably, gagajazz.com was created on March 31, 2005, but has recently been added to 1 security blocklist, including Google Safe Browsing’s SOCIAL_ENGINEERING category, reinforcing its classification as a high-risk phishing domain. The combination of its age, registrar, and recent blocklist inclusion highlights a long-standing but currently active threat vector.  If you have visited gagajazz.com, immediately cease any further interaction and disconnect from the site. Do not enter any credentials, payment details, or personal information. Scan your device with updated antivirus software to detect potential malware or credential-stealing trojans. Review financial accounts and cryptocurrency wallets for unauthorized transactions. If you entered login credentials, change passwords immediately on a separate, trusted device and enable multi-factor authentication on all critical accounts. Report the domain to your antivirus provider and consider blocking gagajazz.com via hosts file or firewall rules to prevent accidental re-visits.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2005-03-31 10:36:12
- Registrar: ONLINE SAS
- IP: 62.210.16.61

## Detection Status
- VirusTotal: 16 vendors flagged
- Google Safe Browsing: FLAGGED
- Blocklists: 1 hits
  Lists: ["InversionDNS"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/93cf82c4-6444-461c-8373-c1b2187d140d
- PhishDestroy: https://phishdestroy.io/domain/gagajazz.com/
- LLM endpoint: https://phishdestroy.io/domain/gagajazz.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/gagajazz.com/
Last updated: 2026-03-23