# sajid7147.github.io — MALICIOUS

> PhishDestroy warns sajid7147.github.io is an ACTIVE crypto drainer impersonating a brand. This GitHub-hosted domain is flagged by 14 of 95 VirusTotal vendors.

## Summary
PhishDestroy identifies sajid7147.github.io as an active crypto drainer phishing domain impersonating a branded service. The campaign is currently live and distributing malicious payloads to unsuspecting users.

This domain was flagged by 14 of 95 VirusTotal vendors, registered through GitHub, Inc., and resolving to IP 185.199.108.153. The SSL certificate is issued by Let's Encrypt, and the domain exhibits elevated risk due to its active distribution of cryptocurrency-stealing malware.

Users are advised to avoid accessing this domain entirely. If interaction has occurred, disconnect affected devices from the internet, scan for malware using PhishDestroy's verification tool, and report the domain to your security team. Monitor cryptocurrency wallets for unauthorized transactions.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: GitHub, Inc.
- IP: 185.199.108.153

## Detection Status
- VirusTotal: 14 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/cafdfde1-ff9b-4b43-88d2-8ab56d5baa91
- PhishDestroy: https://phishdestroy.io/domain/sajid7147.github.io/
- LLM endpoint: https://phishdestroy.io/domain/sajid7147.github.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/sajid7147.github.io/
Last updated: 2026-03-23