# kingdomintlbank.pro — SUSPICIOUS > kingdomintlbank.pro exposed as a crypto drainer mimicking banks. VirusTotal flags 2/95 scanners. Review full safety report now. ## Summary PhishDestroy identifies kingdomintlbank.pro as an active crypto drainer site targeting banking users. The domain employs a sophisticated phishing kit designed to trick victims into connecting crypto wallets, triggering unauthorized token transfers via malicious smart contracts. No specific financial brand is being impersonated; instead, the fraudulent site promotes a fake international banking front to establish credibility and lure victims. The drainer kit relies on JavaScript-based wallet-draining payloads, leveraging deceptive UI elements to obfuscate transaction approvals. This infrastructure forms part of a wider campaign to siphon digital assets under the guise of legitimate banking or investment services. Technical analysis confirms the domain resolves to IP 198.251.84.200 under a Let’s Encrypt SSL certificate. Registered on January 06, 2026 through Dynadot Inc, the domain currently returns a neutral VirusTotal detection score of 2 out of 95 security vendors. There is no public record of inclusion in Google Safe Browsing (GSB), and it remains unlisted on major threat blocklists at this time. The domain’s recent creation date and low detection rate suggest a newly deployed operation with potential for rapid growth. This domain remains active and poses an elevated risk to cryptocurrency users. PhishDestroy has flagged the site using seed a5ee8d and urges immediate caution. Users should avoid interacting with the site, verify sender authenticity in all communications, and never connect wallets to untrusted dApps. To minimize exposure, security teams are advised to block the domain at network level and monitor related IP ranges. While the immediate threat is elevated, proactive blocking and public reporting can reduce long-term risk. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-01-06 07:14:40 - Registrar: Dynadot Inc - IP: 198.251.84.200 ## Detection Status - VirusTotal: 2 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/6bfbb971-87f4-4124-a29c-c2a549ebdff1 - PhishDestroy: https://phishdestroy.io/domain/kingdomintlbank.pro/ - LLM endpoint: https://phishdestroy.io/domain/kingdomintlbank.pro/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/kingdomintlbank.pro/ Last updated: 2026-03-23