# aster.app-main.life — MALICIOUS

> Warning: aster.app-main.life is an active phishing site posing as a crypto DEX platform. Avoid interaction to protect your credentials.

## Summary
PhishDestroy identifies aster.app-main.life as an active phishing domain masquerading as a next-generation decentralized exchange (DEX) platform for traders. Classified under generic phishing, the site attempts to lure users into divulging sensitive information under the guise of cryptocurrency trading services. The domain's page title "Aster - The next-gen perp DEX for all traders" is crafted to appeal to crypto users seeking advanced trading tools.

Technical analysis reveals that aster.app-main.life was registered recently on February 21, 2026, through PDR Ltd. d/b/a PublicDomainRegistry.com. The domain resolves to IP address 172.67.217.190, which may be part of a larger content delivery or hosting infrastructure often abused by phishing actors. VirusTotal flags this domain by 7 out of 95 security vendors, and it appears on two separate security blocklists, confirming its malicious reputation. These indicators support the conclusion that the domain is engaged in fraudulent activities targeting crypto traders.

Currently, aster.app-main.life remains active and accessible, posing an ongoing risk to users who may be deceived by its fraudulent claims. PhishDestroy recommends immediate avoidance and reporting of this domain to prevent credential theft or financial loss. Users are urged to verify URLs carefully and rely on trusted platforms when engaging in cryptocurrency trading activities.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 530)
- Page title: Aster - The next-gen perp DEX for all traders

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com
- Country: IN
- IP: 172.67.217.190
- Nameservers: ["ns1.verification-hold.suspended-domain.com", "ns2.verification-hold.suspended-domain.com"]
- SSL Issuer: WE1

## Detection Status
- VirusTotal: 7 vendors flagged
  Vendors: ["alphaMountain.ai", "CRDF", "CyRadar", "Fortinet", "G-Data", "Seclookup", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "ScamSniffer"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019992f0-4274-76da-8276-d2051125e707.png
- PhishDestroy: https://phishdestroy.io/domain/aster.app-main.life/
- LLM endpoint: https://phishdestroy.io/domain/aster.app-main.life/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/aster.app-main.life/
Last updated: 2026-03-19