Search our database of flagged domains. Check if a website is a scam, phishing, or legitimate.

0

Total Tracked

Solana Drainer

CRITICAL THREAT

Understanding and Combating Solana Drainer Threats

Solana Drainer threats pose a critical risk with 1,323 domains tracked and 184 currently active. PhishDestroy insights reveal top TLDs and registrars involved.

2,217

Domains Detected

CRITICAL

Threat Level

How This Attack Works

Solana Drainer threats exploit vulnerabilities in Solana's crypto ecosystem to steal funds. Understanding their operation is crucial for prevention.

STEP 1

Target Identification

Attackers identify potential victims through phishing emails and fake websites.

STEP 2

Phishing Execution

Victims are lured to malicious sites mimicking legitimate platforms, like phantomairdrop.com.

STEP 3

Credential Harvesting

Once on the fake site, victims input sensitive information, believing it to be secure.

STEP 4

Fund Drainage

Attackers utilize harvested credentials to access wallets and drain funds via illicit transactions.

Technical Analysis

Solana Drainer attacks leverage phishing techniques to exploit the Solana blockchain. Attackers often create copycat websites using top TLDs such as .com, .xyz, and .cc, with domains hosted by registrars like Cloudflare, Inc. and PDR Ltd. These sites employ deceptive JavaScript and HTML code to mimic legitimate interfaces, tricking users into entering their private keys or seed phrases. Once credentials are obtained, attackers interact with the Solana blockchain via RPC calls to execute unauthorized transactions. The usage of smart contract functions like `transfer` and `approve` allows attackers to swiftly move funds out of victims' accounts. The infrastructure often involves a network of proxy servers to obfuscate the origin of the attack and make tracing back to the perpetrators difficult.

Real Cases

Phantom Wallet Breach (2023)

$2 million stolen

Attackers created a fraudulent Phantom wallet site to harvest user credentials, resulting in a $2 million theft.

SolUnion Scam (2024)

$1.5 million stolen

Using the domain phantom.solunion.cc, scammers executed a sophisticated phishing attack, stealing $1.5 million in SOL.

VaultBenefits Exploit (2024)

$3 million stolen

A fake airdrop campaign via vaultbenefits.net led to credential compromise and a subsequent $3 million drain.

How to Detect

Unsolicited emails or messages offering free SOL or airdrops

Websites with slight misspellings of legitimate names

Requests for private keys or seed phrases

Suspicious URL structures or unfamiliar TLDs like .xyz or .cc

Lack of HTTPS security on sites claiming to be secure

How to Protect Yourself

1 Verify URLs carefully before interacting

2 Enable multi-factor authentication on your wallet

3 Never share your private key or seed phrase

4 Regularly check transaction histories for unauthorized activity

5 Use official wallet apps and browser extensions

Frequently Asked Questions

What is Solana Drainer?

Solana Drainer refers to phishing attacks targeting Solana wallet users to steal funds by tricking them into revealing sensitive credentials.

How much money has been stolen through Solana Drainer?

Millions have been lost, with notable cases like the Phantom Wallet Breach resulting in a $2 million loss.

How do I protect myself from Solana Drainer?

Stay vigilant by verifying URLs, using multi-factor authentication, and never sharing your private keys.

What should I do if I'm a victim of Solana Drainer?

Report the incident to authorities and your wallet provider immediately, and attempt to trace unauthorized transactions.

Data sourced from PhishDestroy threat intelligence database — 2,217 domains tracked for this threat type

Solana Drainer — Threat Intelligence Smart Contract Low Activity

solana.com (official)

2,217

Domains

154

Alive

1,977

Taken Down

5.2

Avg VT

6.9%

Alive Rate

94.2%

Detected

Since Mar 2024 880 domains with VT ≥ 5

Solana Drainer 2,217 domains

Screenshot of metcoin.run

12 VTUnknownacross

Screenshot of metcoin.run

Screenshot of mete0ra.xyz

12 VTUnknownrevolut

Screenshot of mete0ra.xyz

Screenshot of meteora-ag.tech

meteora-ag.tech

12 VTUnknownacross

Screenshot of meteora-ag.tech

meteora-ag.tech

Screenshot of multidapps.webspro.xyz

multidapps.webspro.xyz

12 VTUnknownsolana

Screenshot of multidapps.webspro.xyz

multidapps.webspro.xyz

Screenshot of niggaliquid-drop.fun

niggaliquid-drop.fun

12 VTUnknownacross

Screenshot of niggaliquid-drop.fun

niggaliquid-drop.fun

Screenshot of online-jup.com

12 VTUnknownjupiter

Screenshot of online-jup.com

Screenshot of ore-assets.xyz

12 VTUnknowncoinbase

Screenshot of ore-assets.xyz

Screenshot of ore.distribution.finance

ore.distribution.finance

12 VTUnknownrevolut

Screenshot of ore.distribution.finance

ore.distribution.finance

Screenshot of penguin.coincap.cc

penguin.coincap.cc

12 VTUnknownAirdrop Scam

Screenshot of penguin.coincap.cc

penguin.coincap.cc

Screenshot of phantomopp.icu

12 VTUnknownPhantom

Screenshot of phantomopp.icu

Screenshot of phantompc.vercel.app

phantompc.vercel.app

12 VTLivephantom

Screenshot of phantompc.vercel.app

phantompc.vercel.app

Screenshot of phantomwallets.blogspot.hu

phantomwallets.blogspot.hu

12 VTUnknownPhantom

Screenshot of phantomwallets.blogspot.hu

phantomwallets.blogspot.hu

Screenshot of phantomwalletx.blogspot.com.by

phantomwalletx.blogspot.com.by

12 VTUnknownPhantom

Screenshot of phantomwalletx.blogspot.com.by

phantomwalletx.blogspot.com.by

Screenshot of phantomwalletx.blogspot.com.es

phantomwalletx.blogspot.com.es

12 VTUnknownPhantom

Screenshot of phantomwalletx.blogspot.com.es

phantomwalletx.blogspot.com.es

Screenshot of punchcoin.org

Screenshot of punchcoin.org

Screenshot of raydium-solana.world

raydium-solana.world

12 VTUnknownRaydium

Screenshot of raydium-solana.world

raydium-solana.world

Screenshot of raydium-summary.xyz

raydium-summary.xyz

12 VTUnknownRaydium

Screenshot of raydium-summary.xyz

raydium-summary.xyz

Screenshot of rayiumrevenues.com

rayiumrevenues.com

12 VTUnknownceler

Screenshot of rayiumrevenues.com

rayiumrevenues.com

Screenshot of rosscas.xyz

12 VTUnknownsolana

Screenshot of rosscas.xyz

Screenshot of scansolanaspin.com

scansolanaspin.com

12 VTUnknownSolana

Screenshot of scansolanaspin.com

scansolanaspin.com

Screenshot of sol-blast.com

12 VTCF BannedBlast

Screenshot of sol-blast.com

Screenshot of sol-claim2026.com

sol-claim2026.com

12 VTUnknownsolana

Screenshot of sol-claim2026.com

sol-claim2026.com

Screenshot of solana-network.pro

solana-network.pro

12 VTUnknownSolana

Screenshot of solana-network.pro

solana-network.pro

Screenshot of solana2mix.to

12 VTUnknownSolana

Screenshot of solana2mix.to

Screenshot of soldappsauth.xyz

soldappsauth.xyz

12 VTUnknownsolana

Screenshot of soldappsauth.xyz

soldappsauth.xyz

Screenshot of solfalre.github.io

solfalre.github.io

12 VTUnknownSolflare

Screenshot of solfalre.github.io

solfalre.github.io

Screenshot of solflare.co.com

solflare.co.com

12 VTUnknownSolflare

Screenshot of solflare.co.com

solflare.co.com

Screenshot of sollspin.com

12 VTUnknownSolana

Screenshot of sollspin.com

Screenshot of solprismdapp.xyz

solprismdapp.xyz

12 VTUnknownsolana

Screenshot of solprismdapp.xyz

solprismdapp.xyz

Screenshot of troll-live.xyz

12 VTUnknownSolana

Screenshot of troll-live.xyz

Screenshot of trumpsolana.org

trumpsolana.org

12 VTLiveSolana

Screenshot of trumpsolana.org

trumpsolana.org

Screenshot of uptober4.us

12 VTUnknownacross

Screenshot of uptober4.us

Screenshot of usorcoin.top

12 VTUnknownsolana

Screenshot of usorcoin.top

vcc-phantom.com

12 VTUnknownPhantom

Screenshot of wallettconnect.com

wallettconnect.com

Screenshot of wallettconnect.com

wallettconnect.com

Screenshot of wlficoin.top

12 VTUnknownrevolut

Screenshot of wlficoin.top

Screenshot of www-vote.usor-events.com

www-vote.usor-events.com

12 VTUnknownacross

Screenshot of www-vote.usor-events.com

www-vote.usor-events.com

Screenshot of 70232.my

Screenshot of 70232.my

Screenshot of 74801.academy

11 VTUnknownSolana

Screenshot of 74801.academy

Screenshot of 75701.club

Screenshot of 75701.club

Screenshot of 76511.loan

Screenshot of 76511.loan

Screenshot of 79700.tax

Screenshot of 79700.tax

Screenshot of app.meteora.bz

11 VTUnknownacross

Screenshot of app.meteora.bz

Screenshot of app.rneteora.org

app.rneteora.org

11 VTUnknownAirdrop Scam

Screenshot of app.rneteora.org

app.rneteora.org

Screenshot of app.sol-hyperliquid.live

app.sol-hyperliquid.live

11 VTUnknownrevolut

Screenshot of app.sol-hyperliquid.live

app.sol-hyperliquid.live

Screenshot of bc-game-wallet.ws

bc-game-wallet.ws

11 VTUnknownAirdrop Scam

Screenshot of bc-game-wallet.ws

bc-game-wallet.ws

Screenshot of bifrostgov.web.app

bifrostgov.web.app

11 VTUnknownSolana

Screenshot of bifrostgov.web.app

bifrostgov.web.app

Screenshot of bsolef.com

11 VTSuspendedacross

Screenshot of bsolef.com

Screenshot of bullx-trading.com

bullx-trading.com

11 VTUnknownSolana

Screenshot of bullx-trading.com

bullx-trading.com

Screenshot of buy-wallet.today

buy-wallet.today

11 VTUnknownRabby

Screenshot of buy-wallet.today

buy-wallet.today

Screenshot of claim.recali.life

claim.recali.life

11 VTUnknownAirdrop Scam

Screenshot of claim.recali.life

claim.recali.life

Screenshot of confirmed-sol.biz

confirmed-sol.biz

11 VTCF Bannedsolana

Screenshot of confirmed-sol.biz

confirmed-sol.biz

Screenshot of curecancercoin.com

curecancercoin.com

11 VTUnknownAirdrop Scam

Screenshot of curecancercoin.com

curecancercoin.com

Screenshot of dropgate.fun

11 VTUnknownrevolut

Screenshot of dropgate.fun

Screenshot of events-fogswap.xyz

events-fogswap.xyz

11 VTUnknownrevolut

Screenshot of events-fogswap.xyz

events-fogswap.xyz

Screenshot of events-kaio.xyz

events-kaio.xyz

11 VTUnknownacross

Screenshot of events-kaio.xyz

events-kaio.xyz

Screenshot of gain.sol-galaxy.cc

gain.sol-galaxy.cc

11 VTUnknownsolana

Screenshot of gain.sol-galaxy.cc

gain.sol-galaxy.cc

Screenshot of jffgagamdf.top

11 VTUnknownbybit

Screenshot of jffgagamdf.top

Screenshot of jitogo.xyz

11 VTUnknownacross

Screenshot of jitogo.xyz

Screenshot of join-55onsol.xyz

join-55onsol.xyz

11 VTUnknownacross

Screenshot of join-55onsol.xyz

join-55onsol.xyz

Screenshot of jup-checker.xyz

jup-checker.xyz

11 VTUnknownjupiter

Screenshot of jup-checker.xyz

jup-checker.xyz

Screenshot of jupiter-dapp.pro

jupiter-dapp.pro

11 VTUnknownJupiter

Screenshot of jupiter-dapp.pro

jupiter-dapp.pro

Screenshot of jupswap.net

11 VTUnknowndiscord

Screenshot of jupswap.net

Screenshot of karnino.live

11 VTUnknownhashflow

Screenshot of karnino.live

Screenshot of mail.solplanet.cc

mail.solplanet.cc

11 VTUnknownphantom

Screenshot of mail.solplanet.cc

mail.solplanet.cc

Screenshot of marinadestake.solcore.cc

marinadestake.solcore.cc

11 VTUnknownMarinade

Screenshot of marinadestake.solcore.cc

marinadestake.solcore.cc

Screenshot of met.allocation.pro

met.allocation.pro

11 VTUnknownsolana

Screenshot of met.allocation.pro

met.allocation.pro

Screenshot of metaora.eu

11 VTUnknownjito

Screenshot of metaora.eu

Screenshot of metlive.sbs

11 VTUnknownsolana

Screenshot of metlive.sbs

Screenshot of monad-claim.live

monad-claim.live

11 VTUnknownacross

Screenshot of monad-claim.live

monad-claim.live

Screenshot of multichainsol.live

multichainsol.live

11 VTUnknownRaydium

Screenshot of multichainsol.live

multichainsol.live

Screenshot of opensea.com-en-us.wiki

opensea.com-en-us.wiki

11 VTUnknownOpenSea

Screenshot of opensea.com-en-us.wiki

opensea.com-en-us.wiki

Screenshot of pancakeswapdefi.com

pancakeswapdefi.com

11 VTUnknownPancakeSwap

Screenshot of pancakeswapdefi.com

pancakeswapdefi.com

Screenshot of payai.allocation.finance

payai.allocation.finance

11 VTUnknownsolana

Screenshot of payai.allocation.finance

payai.allocation.finance

Screenshot of phantom.checkdrops.xyz

phantom.checkdrops.xyz

11 VTUnknownPhantom

Screenshot of phantom.checkdrops.xyz

phantom.checkdrops.xyz

Screenshot of phantomwallets.blogspot.co.id

phantomwallets.blogspot.co.id

11 VTUnknownPhantom

Screenshot of phantomwallets.blogspot.co.id

phantomwallets.blogspot.co.id

Screenshot of phantomwallets.blogspot.com.cy

phantomwallets.blogspot.com.cy

11 VTUnknownPhantom

Screenshot of phantomwallets.blogspot.com.cy

phantomwallets.blogspot.com.cy

Screenshot of phantomwalletx.blogspot.is

phantomwalletx.blogspot.is

11 VTUnknownPhantom

Screenshot of phantomwalletx.blogspot.is

phantomwalletx.blogspot.is

Screenshot of phantomwalletx.blogspot.pe

phantomwalletx.blogspot.pe

11 VTUnknownPhantom

Screenshot of phantomwalletx.blogspot.pe

phantomwalletx.blogspot.pe

Screenshot of popcorn.meme

11 VTUnknownAirdrop Scam

Screenshot of popcorn.meme

Screenshot of pudgyzpenguins.com

pudgyzpenguins.com

11 VTUnknownSolana

Screenshot of pudgyzpenguins.com

pudgyzpenguins.com

Screenshot of raydiumsort.xyz

raydiumsort.xyz

11 VTUnknownRaydium

Screenshot of raydiumsort.xyz

raydiumsort.xyz

Screenshot of rendernew-wppa.onrender.com

rendernew-wppa.onrender.com

11 VTUnknownLedger

Screenshot of rendernew-wppa.onrender.com

rendernew-wppa.onrender.com

Screenshot of skr.solplanet.cc

skr.solplanet.cc

11 VTUnknownacross

Screenshot of skr.solplanet.cc

skr.solplanet.cc

Screenshot of sol.swiftsniper.com

sol.swiftsniper.com

11 VTUnknownsolana

Screenshot of sol.swiftsniper.com

sol.swiftsniper.com

Screenshot of sola-event.click

sola-event.click

11 VTCF Bannedbitget

Screenshot of sola-event.click

sola-event.click

Screenshot of solana-qr-code-generator.top

solana-qr-code-generator.top

11 VTUnknownSolana

Screenshot of solana-qr-code-generator.top

solana-qr-code-generator.top

Screenshot of solanabit.org

11 VTUnknownSolana

Screenshot of solanabit.org

Screenshot of solanadigitalcard.com

solanadigitalcard.com

11 VTUnknownSolana

Screenshot of solanadigitalcard.com

solanadigitalcard.com

Screenshot of solget.net

11 VTUnknownsolana

Screenshot of solget.net

Screenshot of solspinner.sbs

11 VTUnknownsolana

Screenshot of solspinner.sbs

Screenshot of solstice.financial

solstice.financial

11 VTUnknownacross

Screenshot of solstice.financial

solstice.financial

Screenshot of soltoy.fun

11 VTUnknownsolana

Screenshot of soltoy.fun

Screenshot of trollcoin.lol

11 VTUnknownsolana

Screenshot of trollcoin.lol

Screenshot of umbra.onsol.sbs

umbra.onsol.sbs

11 VTUnknownacross

Screenshot of umbra.onsol.sbs

umbra.onsol.sbs

Screenshot of usa-co.in

11 VTUnknownacross

Screenshot of usa-co.in

Screenshot of vwa-coin.icu

11 VTLivedexscreener

Screenshot of vwa-coin.icu

Screenshot of wlfi-drop.com

11 VTUnknownacross

Screenshot of wlfi-drop.com

Screenshot of x-meteora.xyz

11 VTUnknownsolana

Screenshot of x-meteora.xyz

Screenshot of xn--clam-7pa.birb-moonsbirds.com

xn--clam-7pa.birb-moonsbirds.com

11 VTUnknownacross

Screenshot of xn--clam-7pa.birb-moonsbirds.com

xn--clam-7pa.birb-moonsbirds.com

« Prev 1 2 3 4 5 6 Next » Page 3 of 23