# hyperliquid-data.com — SUSPICIOUS

> Domain hyperliquid-data.com impersonates Hyperliquid in a brand abuse attack. Avoid this site; it has 0/95 VirusTotal detections and resolves to IP 216.198.79.1.

## Summary
PhishDestroy identifies hyperliquid-data.com as a malicious site actively impersonating the legitimate Hyperliquid platform. This domain was registered on October 24, 2025, through Namecheap Inc., and uses a Let’s Encrypt SSL certificate to appear legitimate. Its goal is to trick users into entering sensitive login or financial details by mimicking Hyperliquid’s official branding and domain structure.  This domain was flagged after VirusTotal scanning returned 0 detections out of 95 security engines, meaning it currently evades most antivirus detection. The domain resolves to IP address 216.198.79.1, which has no prior association with Hyperliquid’s infrastructure. These indicators suggest the threat actor is actively staging infrastructure to avoid detection while preparing for future attacks.  If you visited hyperliquid-data.com, do not enter any credentials or financial information. Run a full antivirus scan on your device. Check your browser history and remove any saved credentials related to Hyperliquid. Monitor your crypto wallets and exchange accounts for unauthorized transactions. Report the domain to your IT team and consider changing passwords on other platforms using the same email or password combination.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)
- Target brand: Hyperliquid

## Domain Intelligence
- Registered: 2025-10-24 18:51:56
- Registrar: NAMECHEAP INC
- IP: 216.198.79.1

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/4973a2b1-896c-411d-b8d3-c41c72d9d8f8
- PhishDestroy: https://phishdestroy.io/domain/hyperliquid-data.com/
- LLM endpoint: https://phishdestroy.io/domain/hyperliquid-data.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/hyperliquid-data.com/
Last updated: 2026-03-28