# www.yb69.cc — SUSPICIOUS

> yb69.cc is a confirmed crypto drainer phishing domain (2/95 VT detections). Verify its legitimacy before interacting to protect your digital assets.

## Summary
PhishDestroy identifies yb69.cc as an active crypto drainer phishing domain with an elevated risk level. This domain employs deceptive tactics to trick users into connecting cryptocurrency wallets and authorizing malicious transactions. The threat involves unauthorized fund drains under the guise of legitimate services or promotions, posing severe financial risks to uninformed users.  This domain was flagged with 2 out of 95 security vendors detecting malicious activity on VirusTotal. It resolves to the IP address 23.225.68.37 and operates under a ZeroSSL certificate, suggesting basic encryption without legitimate validation. Registered through Gname.com Pte. Ltd. on November 11, 2024, the domain is newly established and lacks historical trust, making it a prime candidate for abuse. Early telemetry indicates minimal exposure to public blocklists, further highlighting the urgency for proactive detection.  Mitigating this threat requires immediate action. Users should avoid interacting with yb69.cc or any linked domains, particularly those promoting cryptocurrency services or wallet connections. Verify URLs through trusted sources like PhishDestroy before proceeding. If exposure occurs, disconnect wallets immediately, revoke suspicious permissions, and monitor for unauthorized transactions. Organizations should consider blocking the IP 23.225.68.37 and the domain at network and DNS levels to prevent potential compromise.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2024-11-11 11:39:30
- Registrar: Gname.com Pte. Ltd.
- IP: 23.225.68.37

## Detection Status
- VirusTotal: 2 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/108a7c2a-1029-4b6e-8e6c-825fcad7cdeb
- PhishDestroy: https://phishdestroy.io/domain/www.yb69.cc/
- LLM endpoint: https://phishdestroy.io/domain/www.yb69.cc/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/www.yb69.cc/
Last updated: 2026-03-31