# multisoldapps.xyz — MALICIOUS

> Multisoldapps.xyz is flagged as a high-risk phishing site. Avoid interaction and protect your data from potential credential theft.

## Summary
PhishDestroy identifies multisoldapps.xyz as an active phishing domain designed to deceive users by mimicking legitimate services under the page title "swiftsoltoken." This type of threat is significant because it can lead to the compromise of sensitive information such as login credentials, financial data, or personal details, putting users at severe risk of fraud and identity theft.

The domain was registered recently on November 7, 2025, through NiceNIC International Group Co., Limited. It is currently active and appears on multiple security blocklists. VirusTotal flags this domain with 14 out of 95 security vendors identifying it as malicious, indicating a strong consensus on its threat level. The domain's infrastructure and registration details suggest it is operated by threat actors employing generic phishing tactics.

Users are strongly advised to avoid visiting multisoldapps.xyz or engaging with any content hosted on it. Do not enter any credentials or personal information if prompted, and ensure your security software is up to date to block access automatically. Reporting suspicious emails or links associated with this domain to your IT department or security provider is also recommended to prevent further impact.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 530)
- Page title: swiftsoltoken

## Domain Intelligence
- Registered: 2025-11-07 16:00:00
- Registrar: NiceNIC International Group Co., Limited
- Country: HK
- Nameservers: ["aleena.ns.cloudflare.com", "dimitris.ns.cloudflare.com"]
- SSL Issuer: WE1

## Detection Status
- VirusTotal: 14 vendors flagged
  Vendors: ["alphaMountain.ai", "BitDefender", "CRDF", "CyRadar", "Ermes", "ESET", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Gridinsoft", "Lionic", "SOCRadar", "Sophos", "VIPRE"]
- Google Safe Browsing: clean
- Blocklists: 4 hits
  Lists: ["PhishDestroy", "MetaMask", "ScamSniffer", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019b9769-df8d-728b-871c-768874fe3690.png
- PhishDestroy: https://phishdestroy.io/domain/multisoldapps.xyz/
- LLM endpoint: https://phishdestroy.io/domain/multisoldapps.xyz/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/multisoldapps.xyz/
Last updated: 2026-03-19