# tyc55500.com — MALICIOUS > tyc55500.com is a confirmed social engineering phishing domain. VirusTotal flags 9/95 vendors. Check the full report. ## Summary PhishDestroy identifies tyc55500.com as an active social engineering phishing domain designed to deceive users into surrendering sensitive information such as login credentials, financial details, or personal data. This domain mimics legitimate services to exploit trust and trick victims into engaging with malicious content. Security researchers have confirmed that tyc55500.com is currently being used in targeted phishing campaigns, often distributed via email, SMS, or social media messages that appear to originate from trusted entities. The threat actor behind this domain leverages spoofed branding and urgent messaging to manipulate users into clicking malicious links or entering data into counterfeit login portals. This domain exhibits multiple indicators of compromise that validate its malicious intent. VirusTotal analysis shows that 9 out of 95 security vendors have flagged tyc55500.com as malicious. The domain was registered through GMO Internet, Inc., a common domain registrar with minimal oversight, and was created on March 17, 2026—an unusually recent registration date that suggests opportunistic deployment. It has been blocked by InversionDNS and flagged by Google Safe Browsing under the category of SOCIAL_ENGINEERING, indicating a high potential for fraudulent activity. Additionally, tyc55500.com resolves to IP address 156.244.86.244 and has been listed on one confirmed security blocklist, further solidifying its reputation as a malicious domain. Users who have visited tyc55500.com or received communications from this domain should assume their device or data may be at risk. Immediately cease interaction with the site and avoid entering any personal or financial information. If you clicked on links or entered data, change passwords for all online accounts—especially those associated with email, banking, or social media—and enable multi-factor authentication where available. Run a full antivirus scan on your device to detect and remove any potential malware. Report the domain to your IT security team or file a complaint with relevant authorities such as the FTC or CERT. Monitor financial and online accounts closely for signs of unauthorized activity. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-03-17 20:32:45 - Registrar: GMO Internet, Inc. - IP: 156.244.86.244 ## Detection Status - VirusTotal: 9 vendors flagged - Google Safe Browsing: FLAGGED - Blocklists: 1 hits Lists: ["InversionDNS"] ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/5daff46f-7827-4338-8fed-12dac122d306 - PhishDestroy: https://phishdestroy.io/domain/tyc55500.com/ - LLM endpoint: https://phishdestroy.io/domain/tyc55500.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/tyc55500.com/ Last updated: 2026-03-22