# oyuce.net — SUSPICIOUS

> oyuce.net is actively distributing fake invoice phishing lures. Initial scan shows 0/95 VirusTotal detections. Check the full report.

## Summary
PhishDestroy identifies oyuce.net as an active generic phishing domain under investigation, specifically impersonating invoice delivery systems to harvest credentials and payment data.


This domain exhibits multiple red flags including a recent registration date of October 12, 2025, hosting on IP 54.215.31.113 via Amazon AWS, and utilizing a Let's Encrypt SSL certificate. The domain was registered through Dynadot Inc with no current presence on any major blocklists, showing 0 out of 95 detections on VirusTotal at time of analysis. Its generic nature and lack of historical reputation data make it particularly dangerous for unsuspecting users.


The phishing threat from oyuce.net is classified as high-priority due to its active status and lack of detection. Users should avoid clicking any links or downloading attachments from this domain, as it likely delivers malicious payloads disguised as invoice documents. Verify any unexpected invoices through official channels using known-good contact information. Organizations should implement DNS filtering to block this domain and monitor network traffic for connections to the associated IP address. Immediate report submission to cybersecurity teams and domain takedown requests are recommended given the active threat status.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2025-10-12 18:03:38
- Registrar: Dynadot Inc
- IP: 54.215.31.113

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/oyuce.net
- PhishDestroy: https://phishdestroy.io/domain/oyuce.net/
- LLM endpoint: https://phishdestroy.io/domain/oyuce.net/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/oyuce.net/
Last updated: 2026-04-10