# airdrops-hyperiiquid.xyz — MALICIOUS > Discover the risks linked to airdrops-hyperiiquid.xyz, a crypto drainer domain now offline but flagged by multiple security sources. ## Summary PhishDestroy identifies airdrops-hyperiiquid.xyz as a medium-risk crypto drainer domain involved in illicit cryptocurrency theft activities. This domain was designed to lure victims into exposing wallet credentials or signing malicious transactions under the guise of airdrop promotions. The threat poses significant financial risk by draining digital assets from unsuspecting users. The domain airdrops-hyperiiquid.xyz was registered on February 21, 2026, and is currently categorized as a dead domain. It has been listed on six distinct security blocklists and flagged by six antivirus vendors in VirusTotal scans, indicating widespread recognition of its malicious intent. The infrastructure supporting this domain showed typical crypto fraud patterns, such as phishing content mimicking legitimate airdrop campaigns and attempts to harvest private keys or seed phrases. Currently, the domain is offline, mitigating immediate threats from this source. However, given the ongoing evolution of crypto-related attacks, users are advised to remain vigilant for similar scams. PhishDestroy recommends employing robust endpoint protection, regularly updating threat intelligence feeds, and educating users on the risks of interacting with unsolicited crypto airdrop offers. ## Threat Details - Verdict: MALICIOUS - Site status: alive (HTTP 530) - Scam type: Airdrop Scam - Page title: Just a moment... ## Domain Intelligence - Registered: 2026-02-21 07:01:08 - IP: 172.67.200.204 - SSL Issuer: WE1 ## Detection Status - VirusTotal: 6 vendors flagged Vendors: ["ADMINUSLabs", "alphaMountain.ai", "CyRadar", "Forcepoint ThreatSeeker", "Fortinet", "SOCRadar"] - Google Safe Browsing: clean - Blocklists: 5 hits Lists: ["PhishDestroy", "MetaMask", "Polkadot", "Enkrypt", "Codeesura"] ## Evidence - Screenshot: https://urlscan.io/screenshots/019bd2e0-3341-7569-abeb-ff098b19d3fa.png - PhishDestroy: https://phishdestroy.io/domain/airdrops-hyperiiquid.xyz/ - LLM endpoint: https://phishdestroy.io/domain/airdrops-hyperiiquid.xyz/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/airdrops-hyperiiquid.xyz/ Last updated: 2026-03-19