# kra-34at.com — MALICIOUS

> Is kra-34at.com safe? This domain is a crypto drainer phishing site flagged by 5/95 VirusTotal engines—block it immediately to protect your digital assets.

## Summary
PhishDestroy identifies kra-34at.com as an active cryptocurrency drainer posing an elevated risk to internet users. The domain mimics legitimate crypto platforms to trick victims into connecting wallets or entering seed phrases, enabling direct fund theft. Active since February 7, 2025, this site leverages trust-building SSL (Google Trust Services) to appear authentic while operating under a 5/95 VirusTotal detection score.  This domain was flagged by 5 of 95 security engines on VirusTotal, registered through NICENIC INTERNATIONAL GROUP CO., LIMITED, and resolves to IP 104.21.54.224. With a creation date of February 07, 2025, the short domain age increases suspicion as threat actors frequently deploy new domains to evade blocklists. Google Trust Services issued its SSL certificate, which may temporarily lower user vigilance despite the domain's malicious purpose.  To mitigate risk from crypto drainers like kra-34at.com, avoid clicking links or visiting the domain entirely. Never connect crypto wallets or enter seed phrases on untrusted sites. Use hardware wallets and blockchain monitoring tools to track suspicious transactions. Report this domain to your antivirus vendor and crypto platform support immediately using its full URI.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2025-02-07 23:38:10
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- IP: 104.21.54.224

## Detection Status
- VirusTotal: 5 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/bf17eb60-300e-4ccc-933d-e49527cf4a41
- PhishDestroy: https://phishdestroy.io/domain/kra-34at.com/
- LLM endpoint: https://phishdestroy.io/domain/kra-34at.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/kra-34at.com/
Last updated: 2026-03-27