# 0.1trx.im — SUSPICIOUS

> PhishDestroy identifies 0.1trx.im as a TRON wallet phishing domain mimicking TRX transaction services. Resolving to IP 38.54.16.

## Summary
PhishDestroy identifies 0.1trx.im as a live TRON (TRX) wallet phishing domain under active investigation for generic credential harvesting. This domain poses a direct threat to cryptocurrency users by masquerading as an official TRX transaction service to trick visitors into surrendering private keys or seed phrases.

Risk level for 0.1trx.im is currently marked as under_investigation, with the specific threat type identified as generic_phishing. The domain resolves to IP address 38.54.16.127 and holds a valid Let's Encrypt SSL certificate, which may enhance its perceived legitimacy. VirusTotal shows 0 out of 95 security engines have flagged this domain at the time of assessment, indicating it remains undetected by most antivirus platforms. No data is available on the domain’s creation date, registrar, or presence on major blocklists or trust score platforms within this seed’s intelligence set.

Users must treat 0.1trx.im as HIGH RISK and avoid interacting with any prompts for wallet credentials, private keys, or seed phrases. If accidentally entered, immediately revoke access via a secure TRX wallet interface and transfer remaining funds to a newly generated address. Use hardware wallets or reputable software wallets with phishing-resistant domain verification. Report the domain to your wallet provider and consider blocking IP 38.54.16.127 at the network level. Always verify URLs against official TRON or wallet provider sources before entering sensitive information.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: REGISTRAR_NOT_FOUND
- IP: 38.54.16.127

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/756ce232-2e2a-4bcd-ab60-03106f46309e
- PhishDestroy: https://phishdestroy.io/domain/0.1trx.im/
- LLM endpoint: https://phishdestroy.io/domain/0.1trx.im/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/0.1trx.im/
Last updated: 2026-03-31