# jimmylist.pages.dev — SUSPICIOUS

> jimmylist.pages.dev operates as a crypto drainer impersonating Jimmy's NFT project. Flagged by 0 of 95 VirusTotal vendors—take action now.

## Summary
PhishDestroy identifies jimmylist.pages.dev (seed: a4bae4) as an active cryptocurrency drainer site currently under investigation for fraudulent activities. This domain specifically mimics Jimmy's NFT brand, deploying deceptive tactics to steal digital assets from unsuspecting victims. The threat is classified as a crypto drainer with high-risk implications, as confirmed by ongoing behavioral analysis and threat intelligence monitoring.  This domain was flagged by 0 of 95 VirusTotal vendors, indicating initial evasion of detection mechanisms. It resolves to IP 172.66.47.183, registered through Cloudflare, Inc., leveraging Google Trust Services for its SSL certificate. Despite its recent deployment, the domain has not yet accrued significant blocklist entries, maintaining operational stealth. No prior reputation scores or creation timestamps are publicly documented, suggesting a recently established infrastructure designed for short-term malicious campaigns.  As of current evaluation, jimmylist.pages.dev remains an active crypto drainer deployment targeting Jimmy's NFT community. PhishDestroy advises immediate action: block the domain at network/firewall levels, disable access to associated IP 172.66.47.183, and warn users about the impersonated Jimmy brand. Enhanced monitoring for outbound cryptocurrency transactions to wallet addresses associated with this domain is strongly recommended to mitigate asset loss.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.47.183

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/8a2ac4aa-f5ee-4aa4-8110-decb3f9ffcdb
- PhishDestroy: https://phishdestroy.io/domain/jimmylist.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/jimmylist.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/jimmylist.pages.dev/
Last updated: 2026-03-23