# kg-granit.pl — SUSPICIOUS

> kg-granit.pl impersonates a Polish granite supplier to steal credentials. Only 0/95 VirusTotal detections. Avoid entering data. Disconnect immediately.

## Summary
PhishDestroy identifies kg-granit.pl as a credential theft domain operating under a brand impersonation scheme targeting unsuspecting buyers of granite materials in Poland. The site leverages a fraudulent replica of a legitimate Polish supplier to harvest login credentials and payment information from victims. Given its active status and the absence of detection across leading security platforms, this domain poses a credible threat to users seeking construction or decorative stone products online.  This domain was flagged by PhishDestroy’s automated pipeline due to suspicious infrastructure indicators and mismatched branding signals. Domain metadata reveals it was registered on March 26, 2026 through Hosting Concepts B.V., resolving to IP 188.114.96.3 with a valid Let’s Encrypt SSL certificate—common tactics to appear trustworthy. VirusTotal currently shows 0 detections out of 95 engines, indicating a low public profile despite suspicious behavior. No known inclusion on major blocklists (e.g., PhishTank, OpenPhish, Spamhaus) suggests this campaign may be newly launched or narrowly targeted.  Mitigation for users encountering kg-granit.pl involves immediate avoidance: do not click, do not enter any credentials or payment details, and disconnect from the site. Organizations should monitor DNS logs for access attempts to this domain and update threat intelligence feeds to include 188.114.96.3. If credentials were submitted, users must rotate passwords immediately and enable multi-factor authentication on all related accounts. Browser extensions like uBlock Origin can block future access, while DNS filtering solutions should block both the domain and IP to prevent reinfection. Proactive reporting to CERT or abuse channels is encouraged to expedite takedown efforts.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-26 06:44:04
- Registrar: Hosting Concepts B.V.
- IP: 188.114.96.3

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/cee38633-b42e-4925-ba91-140437dc0c7a
- PhishDestroy: https://phishdestroy.io/domain/kg-granit.pl/
- LLM endpoint: https://phishdestroy.io/domain/kg-granit.pl/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/kg-granit.pl/
Last updated: 2026-03-30