# hyper-liquid-wallet.pages.dev — SUSPICIOUS > hyper-liquid-wallet.pages.dev impersonates Hyperliquid in an active brand impersonation phishing campaign. VirusTotal flags 1/95 vendors. Check the full report. ## Summary PhishDestroy identifies hyper-liquid-wallet.pages.dev as an active brand impersonation phishing domain targeting Hyperliquid users. This fraudulent site mimics the legitimate Hyperliquid platform to deceive victims into revealing sensitive credentials or transferring cryptocurrency. The domain leverages Cloudflare Pages to host a spoofed interface, exploiting trust in the Hyperliquid brand to deliver a convincing fake wallet interface. Users arriving at this page face immediate risk of credential theft or financial loss if they enter private keys or wallet details. This domain was flagged by 1 out of 95 VirusTotal security vendors, indicating low but notable detection. It resolves to IP address 188.114.97.3 and is registered through Cloudflare, Inc., with an SSL certificate issued by Google Trust Services. The combination of a recognizable brand target, low detection rate, and use of a reputable hosting and SSL provider makes this campaign particularly effective at bypassing basic security measures. The active status and recent deployment suggest ongoing malicious operations. If you visited hyper-liquid-wallet.pages.dev or entered any information, immediately revoke any exposed credentials, transfer funds from associated wallets to a new address, and scan your device for malware. Report the domain to your security team or platform provider and avoid interacting with similar links. Use bookmarks or verified URLs for Hyperliquid access to prevent future exposure to this and similar impersonation threats. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) - Target brand: Hyperliquid ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 188.114.97.3 ## Detection Status - VirusTotal: 1 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/hyper-liquid-wallet.pages.dev - PhishDestroy: https://phishdestroy.io/domain/hyper-liquid-wallet.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/hyper-liquid-wallet.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/hyper-liquid-wallet.pages.dev/ Last updated: 2026-04-09