# www.iyifu.top — SUSPICIOUS > PhishDestroy identifies www.iyifu.top as a crypto drainer phishing domain. VirusTotal flags 2/95 security vendors; act now to block this threat. ## Summary PhishDestroy identifies www.iyifu.top as a crypto drainer phishing domain actively targeting cryptocurrency users. The domain employs a fraudulent scheme designed to drain victim wallets by impersonating legitimate crypto services, leveraging social engineering tactics to deceive users into connecting their wallets or entering private keys. No specific drainer kit signature was publicly disclosed, but the domain's infrastructure and Google Safe Browsing classification strongly correlate with known crypto drainer operations. Domain forensic analysis reveals critical technical indicators consistent with elevated phishing risks. VirusTotal reports a detection ratio of 2 out of 95 security vendors, indicating low but noteworthy recognition by security tools. The domain was registered through Gname.com Pte. Ltd. on March 21, 2026, a recent creation that aligns with opportunistic phishing campaigns. It resolves to IP address 188.114.97.3 and holds a Let's Encrypt SSL certificate, enhancing its camouflage. Google Safe Browsing has flagged this domain with the SOCIAL_ENGINEERING classification, a direct indicator of deceptive practices intended to manipulate users. As of analysis, www.iyifu.top remains active and unblocked on most consumer systems, presenting a current and tangible threat to cryptocurrency users. Immediate remediation should include network-level blocking of the domain and IP address, especially for financial and crypto-related traffic. Users are advised to avoid visiting the site, verify all URLs via official channels, and enable wallet protection features such as transaction simulation and allowlisting. While the risk is elevated due to active status and recent domain age, rapid response can mitigate exposure. PhishDestroy will continue monitoring for changes in status and additional threat indicators. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-03-21 12:58:31 - Registrar: Gname.com Pte. Ltd. - IP: 188.114.97.3 ## Detection Status - VirusTotal: 2 vendors flagged - Google Safe Browsing: FLAGGED - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/02c184e6-fcf8-4629-a1c7-8b457e37e7a5 - PhishDestroy: https://phishdestroy.io/domain/www.iyifu.top/ - LLM endpoint: https://phishdestroy.io/domain/www.iyifu.top/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/www.iyifu.top/ Last updated: 2026-03-22