# kra-22-cc.cc — SUSPICIOUS

> kra-22-cc.cc is a fake cryptocurrency site luring users with fraudulent giveaways. VirusTotal flags 1/95 engines. Avoid clicking any links.

## Summary
kra-22-cc.cc is an active cryptocurrency scam domain designed to deceive users into believing they can claim fraudulent rewards or participate in fake token airdrops. The site leverages urgency and the allure of free tokens to trick visitors into connecting their wallets or submitting sensitive information, which can lead to theft of funds or credentials.  

This domain was flagged by PhishDestroy and MetaMask, and is currently blocked by 2 security blocklists. VirusTotal analysis shows only 1 out of 95 security vendors detect malicious activity at this time, underscoring the stealthy nature of the threat. The domain was registered through NICENIC INTERNATIONAL GROUP CO., LIMITED on July 15, 2025, and resolves to IP address 185.226.92.168, which is associated with hosting numerous phishing campaigns. Its SSL certificate, issued by Let's Encrypt, adds a false veneer of legitimacy, making it harder for users to detect the deception.  

If you have visited kra-22-cc.cc, immediately disconnect any connected wallets, revoke any permissions granted, and scan your device for malware. Never enter private keys, seed phrases, or wallet passwords on any website. Report the domain to your security provider and avoid interacting with any links or pop-ups on the page. Always verify URLs manually and use trusted sources for cryptocurrency transactions.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2025-07-15 15:34:38
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- IP: 185.226.92.168

## Detection Status
- VirusTotal: 1 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "MetaMask"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/81bfec98-ff77-4b2f-b716-30b6d5a6e97a
- PhishDestroy: https://phishdestroy.io/domain/kra-22-cc.cc/
- LLM endpoint: https://phishdestroy.io/domain/kra-22-cc.cc/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/kra-22-cc.cc/
Last updated: 2026-03-26