# khaijstore.com — SUSPICIOUS

> PhishDestroy identifies khaijstore.com as a credential harvesting phishing site detected on VirusTotal with 0/95 detections. Check the full report.

## Summary
PhishDestroy’s automated systems have identified khaijstore.com as a credential harvesting phishing domain targeting Arabic-speaking users. The site mimics a regional retail storefront with a deceptive page title written in Arabic, designed to trick visitors into entering sensitive login or payment details. When visited, the page presents a fake store interface asking for account credentials or financial information, which is then sent to a malicious server under the attacker’s control. This is a classic phishing pattern and poses a direct risk to users who may unwittingly disclose personal or financial data.  This domain was flagged by PhishDestroy’s threat intelligence pipeline and shows clear indicators of malicious intent. The domain resolves to IP address 104.21.9.48 and was registered on March 25, 2024 through Hosting Concepts B.V. d/b/a Registrar.eu. It uses a valid Let’s Encrypt SSL certificate, which may give victims a false sense of security. Notably, as of the latest scan, khaijstore.com has not been flagged on VirusTotal, with only 0 out of 95 detection engines identifying it as malicious. This low detection rate highlights the importance of proactive threat research and user awareness.  If you have visited khaijstore.com or entered any information on the site, immediately change passwords for the account you used and monitor your bank or payment accounts for unauthorized transactions. Do not click on any links or download files from the site. Use a reputable antivirus or anti-phishing tool to scan your device. Report the domain to your email provider and local cybercrime unit. Stay vigilant—legitimate stores do not ask for credentials via third-party links or unknown domains.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: alive (HTTP ?)
- Page title: الخليج ستور - &#x627;&#x644;&#x635;&#x641;&#x62D;&#x629; &#x627;&#x644;&#x631;&#x626;&#x64A;&#x633;&#x64A;&#x629;

## Domain Intelligence
- Registered: 2026-03-25 04:43:13
- Registrar: Hosting Concepts B.V. d/b/a Registrar.eu
- IP: 104.21.9.48

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/4d3294b5-bcfc-4ebc-882b-b06332a53456
- PhishDestroy: https://phishdestroy.io/domain/khaijstore.com/
- LLM endpoint: https://phishdestroy.io/domain/khaijstore.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/khaijstore.com/
Last updated: 2026-04-12