# akitanetwork.live — SUSPICIOUS > akitanetwork.live is a brand-new phishing domain (created March 19, 2026) hosting a crypto drainer kit that steals wallet credentials. ## Summary PhishDestroy identifies akitanetwork.live as an active credential-theft phishing domain designed to harvest cryptocurrency wallet credentials via a crypto-drainer kit. The site masquerades as the legitimate Aki Network brand, leveraging social-engineering tactics to trick users into granting malicious wallet permissions. Analysis of the domain’s infrastructure confirms the presence of a live drainer script, indicating that attackers are actively harvesting private keys and transaction approvals through deceptive wallet-connect dialogues. The campaign appears to target cryptocurrency users under the guise of Aki Network services, with the domain routing traffic through a malicious IP address while presenting a fraudulent SSL certificate issued by Let's Encrypt. Technical indicators confirm this domain as a high-risk threat vector. VirusTotal currently shows zero detections (0/95 engines) despite active malicious activity, while WHOIS data reveals the domain was registered on March 19, 2026—just days prior to detection. The domain resolves to IP address 188.114.97.3, a known malicious host previously associated with phishing and malware campaigns. The NICENIC INTERNATIONAL GROUP CO., LIMITED is listed as the registrar, and while SSL certificates are issued by Let's Encrypt, this does not validate the domain’s legitimacy. Google Safe Browsing (GSB) does not currently flag this domain, and no entries exist in prominent blocklists, leaving users vulnerable to exposure via unsuspecting visits or malicious links. This domain remains active and under investigation. PhishDestroy has escalated findings to relevant blocklist providers and domain registrars for takedown and delisting. Users are strongly advised to block IP 188.114.97.3 at the network level and avoid visiting akitanetwork.live. All cryptocurrency users should verify wallet connection requests using offline methods and revoke any unauthorized approvals immediately. Although detection rates are currently low (0/95), this threat is escalating due to active deployment and zero prior visibility. The remaining risk is assessed as HIGH due to the absence of protective blocks and the domain’s rapid deployment timeline targeting crypto users. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-03-19 00:02:51 - Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED - IP: 188.114.97.3 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/9bf6602d-8685-47ae-bc87-82337331fedf - PhishDestroy: https://phishdestroy.io/domain/akitanetwork.live/ - LLM endpoint: https://phishdestroy.io/domain/akitanetwork.live/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/akitanetwork.live/ Last updated: 2026-03-22