# aestheticsolana.xyz — MALICIOUS — Crypto Drainer (Solana Drainer)

> aestheticsolana.xyz is an active crypto drainer domain targeting Solana wallets. Learn its risk and technical details here.

## Summary
PhishDestroy identifies aestheticsolana.xyz as a low-risk crypto drainer domain focused on Solana blockchain assets. Classified under the Solana Drainer kit family, this domain poses a threat by attempting to illicitly extract cryptocurrency from unsuspecting users.

Technical analysis reveals that aestheticsolana.xyz resolves to the IP address 188.114.97.3 and was registered through NICENIC INTERNATIONAL GROUP CO., LIMITED on March 8, 2026. While VirusTotal flags only 2 out of 95 security vendors, other indicators such as the domain's recent creation date and association with known drainer kits bolster suspicion. The domain infrastructure aligns with common tactics used in crypto wallet credential theft.

Currently active, aestheticsolana.xyz remains under monitoring by PhishDestroy. Due to its low risk but ongoing activity, users are advised to exercise caution when interacting with content related to this domain. PhishDestroy recommends maintaining updated security measures and avoiding unsolicited Solana wallet access prompts linked to this domain.

## Threat Details
- Verdict: MALICIOUS — Crypto Drainer (Solana Drainer)
- Site status: dead (HTTP 404)
- Drainer type: Solana Drainer
- Target brand: Solana
- Page title: Moonshot AI

## Domain Intelligence
- Registered: 2026-03-08 10:17:37
- Registrar: NiceNIC International Group Co., Limited
- Country: HK
- IP: 188.114.97.3
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: dean.ns.cloudflare.com priscilla.ns.cloudflare.com
- SSL Issuer: none

## Detection Status
- VirusTotal: 2 vendors flagged
  Vendors: ["alphaMountain.ai", "Forcepoint ThreatSeeker"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ccdac-d909-72fc-a8c2-e96eefc33bbd.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/22f23fab-472e-4cca-a6ed-f5f95537f268
- Wayback Machine: https://web.archive.org/web/https://aestheticsolana.xyz
- PhishDestroy: https://phishdestroy.io/domain/aestheticsolana.xyz/
- LLM endpoint: https://phishdestroy.io/domain/aestheticsolana.xyz/llm.txt

## If You Visited This Site
1. Revoke all token approvals immediately (revoke.cash / unrekt.net)
2. Move remaining funds to a new wallet
3. Do not interact with any transactions from this site
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/aestheticsolana.xyz/
Last updated: 2026-03-19