# m3a9.nasdaqt.vip — MALICIOUS

> PhishDestroy identifies m3a9.nasdaqt.vip as a credential harvesting phishing site. 5 security vendors flagged this domain. Check the full report.

## Summary
PhishDestroy identifies m3a9.nasdaqt.vip as an active credential harvesting phishing domain designed to trick users into submitting sensitive login credentials under the guise of a legitimate Nasdaq trading portal.  This domain was flagged by 5 out of 95 security vendors on VirusTotal, indicating elevated risk. Registered through Gname.com Pte. Ltd. on March 22, 2026, the domain resolves to IP 151.243.131.108 and operates under a Let's Encrypt SSL certificate to appear trustworthy. Its recent creation and low blocklist coverage suggest a fast-evolving threat likely targeting financial sector users.  If you visited this site, immediately change any passwords entered and scan your device for malware. Report the domain to your IT team or security provider and avoid interacting with similar links. Monitor financial accounts for unauthorized activity and consider enabling multi-factor authentication where available to prevent credential-based attacks.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-22 16:54:57
- Registrar: Gname.com Pte. Ltd.
- IP: 151.243.131.108

## Detection Status
- VirusTotal: 5 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/72f9b89d-377a-44ab-9742-f9bc24a1d92d
- PhishDestroy: https://phishdestroy.io/domain/m3a9.nasdaqt.vip/
- LLM endpoint: https://phishdestroy.io/domain/m3a9.nasdaqt.vip/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/m3a9.nasdaqt.vip/
Last updated: 2026-03-26