# solspre.xyz — SUSPICIOUS

> solspre.xyz: Active crypto drainer impersonating Solana-based investment portal. Flagged by 0 of 95 VirusTotal vendors. Avoid all links and transactions.

## Summary
PhishDestroy identifies active crypto drainer infrastructure hosted at solspre.xyz. This domain is currently engaged in brand impersonation targeting users seeking Solana-based investment opportunities. The campaign is classified as a high-risk threat with live operations and ongoing lure distribution through social engineering vectors. Immediate defensive action is recommended.


This domain was flagged by 0 of 95 VirusTotal vendors at time of analysis, indicating no AV detections despite clear malicious intent. The domain resolves to IP 172.67.136.147 using a Let's Encrypt SSL certificate, lowering user suspicion. It was registered through OwnRegistrar, Inc. on April 05, 2026, and currently remains unlisted on major threat intelligence blocklists, showing low reputation across DNS, WHOIS, and network trust metrics.


Current status remains ACTIVE with no vendor detections. This indicates the campaign is in early deployment or deliberately evading detection through low-volume operations. Users and organizations are urged to block DNS resolution to this domain at the network perimeter and inspect all Solana-related investment solicitations for redirection to this URL. Consider reporting the domain to OwnRegistrar for abuse mitigation and updating browser-based blocklists to prevent accidental exposure.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-04-05 12:39:23
- Registrar: OwnRegistrar, Inc.
- IP: 172.67.136.147

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/solspre.xyz
- PhishDestroy: https://phishdestroy.io/domain/solspre.xyz/
- LLM endpoint: https://phishdestroy.io/domain/solspre.xyz/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/solspre.xyz/
Last updated: 2026-04-06