# jokersec0120.github.io — MALICIOUS

> jokersec0120.github.io is a crypto drainer impersonating OKX, flagged by 16/95 VirusTotal scanners. Verify safety on PhishDestroy before interacting.

## Summary
PhishDestroy identifies jokersec0120.github.io as a high-risk domain actively impersonating the OKX cryptocurrency exchange platform. This site functions as a cryptocurrency drainer, designed to trick users into connecting their digital wallets under the false pretense of security verification or transaction processing. The domain leverages OKX's recognizable branding to lower user suspicion, with the ultimate goal of draining cryptocurrency funds directly from connected wallets. Technical analysis confirms this is not a generic phishing attempt but a targeted crypto drainer operation.  This domain was flagged by 16 out of 95 security vendors on VirusTotal, indicating widespread recognition of its malicious nature. Registered through GitHub, Inc., it resolves to IP address 185.199.108.153 and appears on 1 security blocklist. The site holds a valid Let's Encrypt SSL certificate, which adds a false sense of legitimacy. Google Safe Browsing specifically flags it for SOCIAL_ENGINEERING tactics, confirming its fraudulent purpose. The combination of high-risk detection rate, active impersonation of a major crypto brand, and recent blacklisting makes this a particularly dangerous domain for cryptocurrency users.  If you've visited jokersec0120.github.io, immediately disconnect any cryptocurrency wallets and revoke any permissions you may have granted. Check your wallet's transaction history for unauthorized transfers and consider transferring remaining funds to a new wallet. Scan all connected devices for malware using reputable security software. Report the domain to PhishDestroy for verification and share this information with others in the cryptocurrency community to prevent further victimization. Always verify URLs through official channels before entering any sensitive information or connecting digital wallets.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)
- Target brand: OKX

## Domain Intelligence
- Registrar: GitHub, Inc.
- IP: 185.199.108.153

## Detection Status
- VirusTotal: 16 vendors flagged
- Google Safe Browsing: FLAGGED
- Blocklists: 1 hits
  Lists: ["OISD"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/8b95a204-3562-4ce6-94b6-b94aed49f3f7
- PhishDestroy: https://phishdestroy.io/domain/jokersec0120.github.io/
- LLM endpoint: https://phishdestroy.io/domain/jokersec0120.github.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/jokersec0120.github.io/
Last updated: 2026-04-01