# ouyxi.link — SUSPICIOUS

> PhishDestroy flags ouyxi.link as a crypto drainer phishing domain with 0/95 VirusTotal detections. Avoid clicking this link.

## Summary
PhishDestroy identifies ouyxi.link as a newly active phishing domain designed to steal cryptocurrency through a crypto drainer mechanism. The site falsely presents itself as a legitimate platform to lure victims into connecting their digital wallets, where the drainer then illicitly transfers funds to attacker-controlled addresses without consent. This deceptive technique exploits the trust users place in cryptocurrency services, making it particularly dangerous for those uninformed about such tactics.  This domain was flagged by PhishDestroy with minimal detection coverage—currently 0 out of 95 VirusTotal scans have identified it as malicious. The domain ouyxi.link was registered on June 8, 2025, through Dynadot, LLC, and resolves to the IP address 54.215.31.113. It operates with a valid Let's Encrypt SSL certificate, which may give false reassurance of legitimacy to unsuspecting users. These technical markers suggest a hastily deployed operation likely intended for short-term phishing campaigns.  If you have visited ouyxi.link, immediately disconnect any connected cryptocurrency wallets and revoke any permissions granted to unknown domains or applications. Do not enter any wallet credentials or private keys. Scan your device with updated antivirus software and consider using a hardware wallet for enhanced security. Report the domain to PhishDestroy and relevant cybersecurity platforms to help protect others from this threat. Stay vigilant: crypto drainers often mimic popular services, so always verify URLs and use official channels when managing digital assets.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2025-06-08 18:50:08
- Registrar: Dynadot, LLC
- IP: 54.215.31.113

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/ouyxi.link
- PhishDestroy: https://phishdestroy.io/domain/ouyxi.link/
- LLM endpoint: https://phishdestroy.io/domain/ouyxi.link/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ouyxi.link/
Last updated: 2026-04-06