# swap.zicodao.io — MALICIOUS

> swap.zicodao.io is flagged for phishing activities and remains active. Stay protected—avoid interacting with this domain today.

## Summary
PhishDestroy has identified swap.zicodao.io as a high-risk phishing domain designed to deceive users and harvest sensitive information. The domain’s activities include generic phishing schemes that often target unsuspecting individuals by mimicking legitimate services to extract credentials or financial data. Users should exercise caution and avoid any communications or transactions involving this domain.

Technical analysis reveals that swap.zicodao.io was registered recently on February 21, 2026, indicating a relatively new threat actor or campaign. The domain is currently active and has been flagged by multiple security vendors, with 17 out of 95 indicating malicious intent on VirusTotal. It also appears on three separate security blocklists, reinforcing its dangerous reputation in cybersecurity communities.

At present, swap.zicodao.io continues to pose an active threat with no signs of deactivation. PhishDestroy strongly advises users, organizations, and security teams to block this domain at network boundaries and avoid any form of interaction. Continuous monitoring and updating of security tools are crucial to mitigating potential compromises from phishing attempts associated with this domain.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 200)
- Page title: Uniswap | Trade crypto

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Hosting Concepts B.V. d/b/a Registrar.eu
- Nameservers: ["ns1.hostido.net.pl", "ns2.hostido.net.pl", "ns3.hostido.net.pl"]

## Detection Status
- VirusTotal: 17 vendors flagged
  Vendors: ["alphaMountain.ai", "BitDefender", "Certego", "CRDF", "CyRadar", "Emsisoft", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Gridinsoft", "Kaspersky", "Lionic", "Netcraft", "SOCRadar", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/e0731ccf-2808-471a-b408-8924c4c623c9
- PhishDestroy: https://phishdestroy.io/domain/swap.zicodao.io/

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/swap.zicodao.io/
Last updated: 2026-03-14