# apyusd.net — SUSPICIOUS

> PhishDestroy flags apyusd.net as a crypto drainer phishing site. Zero VirusTotal detections reported since its August 30, 2024 creation.

## Summary
PhishDestroy identifies apyusd.net as a recently activated crypto-drainer phishing domain designed to trick users into approving malicious wallet transactions. This site masquerades as a legitimate cryptocurrency platform to deceive visitors into connecting their wallets and signing fraudulent transactions that drain funds. The domain leverages a newly issued SSL certificate from Google Trust Services and resolves to IP 188.114.96.3, with zero detections out of 95 VirusTotal scans at the time of discovery. Registered through NICENIC INTERNATIONAL GROUP CO., LIMITED on August 30, 2024, the domain remains under active monitoring as investigations continue.  This threat represents a high-risk attack vector targeting cryptocurrency holders, particularly those engaging with new or unfamiliar platforms. The domain's recent creation and low detection rate suggest it may be part of a rapidly deployed campaign aimed at exploiting trust in established certificate providers like Google Trust Services. The use of a dedicated IP address further indicates operational sophistication, potentially allowing the threat actor to cycle infrastructure quickly while maintaining consistent malicious behavior. Users interacting with crypto services must exercise heightened caution, especially when encountering newly registered domains or those with minimal online history.  If you visited apyusd.net, immediately disconnect your wallet and revoke any connected permissions through your wallet’s interface. Do not approve any pending transactions, and scan your device using updated antivirus software. Report the domain to PhishDestroy and your cryptocurrency platform’s security team. Moving forward, verify URLs against PhishDestroy’s database and use hardware wallets for transactions to minimize exposure. Always cross-check new crypto platforms via official channels before engaging.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2024-08-30 20:05:26
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- IP: 188.114.96.3

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/df7933f9-19b5-4263-8600-5c0746946adb
- PhishDestroy: https://phishdestroy.io/domain/apyusd.net/
- LLM endpoint: https://phishdestroy.io/domain/apyusd.net/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/apyusd.net/
Last updated: 2026-03-27