# hyperliquidd.xyz — SUSPICIOUS

> hyperliquidd.xyz, a crypto drainer impersonating Hyperliquid, was flagged by 2/95 VirusTotal vendors. Verify before clicking—check URLs on PhishDestroy.

## Summary
PhishDestroy identifies hyperliquidd.xyz as an active crypto drainer impersonating the legitimate Hyperliquid platform. This fraudulent domain is designed to deceive users into connecting crypto wallets or entering credentials, enabling attackers to drain funds or harvest sensitive data. The threat is elevated due to its recent registration and the use of deceptive branding to exploit trust in the Hyperliquid ecosystem.  This domain was flagged by only 2 out of 95 VirusTotal security vendors, highlighting how new or sophisticated phishing campaigns often evade early detection. Registered on May 08, 2025, through NameSilo, LLC, hyperliquidd.xyz resolves to IP 188.114.96.3 and utilizes a Google Trust Services SSL certificate to appear legitimate. Its recent creation and low initial detection rate make it a high-risk vector for unsuspecting users, particularly those active in decentralized finance.  If you visited hyperliquidd.xyz, immediately revoke any connected wallet permissions using tools like revoke.cash or your wallet’s security settings. Do not enter credentials or connect wallets to unverified sites. Report the domain via PhishDestroy to help protect others, and verify Hyperliquid’s official domains (hyperliquid.xyz) before interacting with any platform.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)
- Target brand: Hyperliquid

## Domain Intelligence
- Registered: 2025-05-08 06:52:44
- Registrar: NameSilo, LLC
- IP: 188.114.96.3

## Detection Status
- VirusTotal: 2 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/abdc64b0-ec13-457d-a87c-de6cd1b355ce
- PhishDestroy: https://phishdestroy.io/domain/hyperliquidd.xyz/
- LLM endpoint: https://phishdestroy.io/domain/hyperliquidd.xyz/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/hyperliquidd.xyz/
Last updated: 2026-03-28