# jayapayment.com — SUSPICIOUS > Jayapayment.com mimics a payment site but pushes a drainer kit stealing crypto wallets. VT score 0/95, registered Aug 2023. Check the full report. ## Summary PhishDestroy identifies jayapayment.com as a live drainer-kit phishing domain masquerading as a payment portal. The site attempts to harvest wallet credentials under the guise of processing transactions. Brand abuse is likely opportunistic, targeting users expecting legitimate payment flows. No affiliation with a known brand or drainer-as-a-service kit has been confirmed at this stage; the threat vector is isolated to this single domain. This domain was flagged by PhishDestroy with a VirusTotal detection score of 0/95 and remains undetected by major scanners. It resolves to IP 104.18.15.83 and was created on August 08, 2023, via GoDaddy.com, LLC. The site holds a valid SSL certificate issued by Google Trust Services but has not yet propagated to any public blocklists, indicating a newly active campaign with minimal historical footprint. Jayapayment.com remains active and under live investigation; the current risk level is marked as under_investigation. Users are advised to avoid interacting with the domain and to report any encounters immediately. Despite the absence of blocklist entries and low VT coverage, the combination of recent registration, valid SSL, and drainer-kit behavior elevates the risk to probable high. PhishDestroy continues to monitor for infrastructure shifts or payload changes and urges caution when encountering unsolicited payment links. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2023-08-08 01:38:26 - Registrar: GoDaddy.com, LLC - IP: 104.18.15.83 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/dfc80395-8300-48bc-9061-81dc8049f06e - PhishDestroy: https://phishdestroy.io/domain/jayapayment.com/ - LLM endpoint: https://phishdestroy.io/domain/jayapayment.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/jayapayment.com/ Last updated: 2026-03-24