# yaggiesoldrainer.pages.dev — SUSPICIOUS

> yaggiesoldrainer.pages.dev is a live crypto drainer site with 0/95 VirusTotal detections. Avoid entering wallet credentials; verify safety on PhishDestroy.

## Summary
PhishDestroy identifies yaggiesoldrainer.pages.dev as an active crypto drainer domain designed to steal cryptocurrency wallet credentials or directly drain funds from unsuspecting users. This fraudulent site masquerades as a legitimate service while intercepting private wallet keys or transaction approvals, posing severe financial risk to anyone who interacts with it. The page operates under the guise of a plausible domain using Cloudflare’s Pages.dev infrastructure, which is commonly abused for hosting short-lived phishing or malware campaigns due to its legitimate appearance and fast deployment capabilities.  This domain was flagged on PhishDestroy with a status of active and a current risk level of under_investigation. It shows 0 detections out of 95 VirusTotal scans, indicating it has not yet been widely recognized by antivirus engines. The domain is registered through Cloudflare, Inc., which provides anonymity and rapid provisioning often exploited by threat actors. It resolves to IP address 172.66.46.225 and holds a valid SSL certificate issued by Google Trust Services, further enhancing its deceptive legitimacy. These technical indicators suggest a recently deployed, possibly automated attack vector targeting cryptocurrency users.  If you visited yaggiesoldrainer.pages.dev or entered any wallet credentials, wallet connection requests, or private keys, immediately disconnect the wallet from the internet, revoke any unauthorized connections, and transfer your funds to a new, secure wallet. Do not approve any pending transactions you did not initiate. Scan your device for malware using reputable security software and consider rotating all passwords linked to the compromised wallet. Report the domain to PhishDestroy and block it on your network. Users should always verify unknown domains using PhishDestroy’s real-time database before entering sensitive information.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.46.225

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/7313c8d6-4cf6-44c9-b2f7-3b3b7c0079ab
- PhishDestroy: https://phishdestroy.io/domain/yaggiesoldrainer.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/yaggiesoldrainer.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/yaggiesoldrainer.pages.dev/
Last updated: 2026-03-25