# kra10-cc.com — SUSPICIOUS

> PhishDestroy identifies kra10-cc.com as a crypto credential theft domain. VirusTotal scores 0/95 detections. Immediate block and investigation urged.

## Summary
PhishDestroy has flagged kra10-cc.com as a live crypto credential theft domain under active investigation. This site, registered on September 2, 2024 through NICENIC INTERNATIONAL GROUP CO., LIMITED, leverages a Let's Encrypt SSL certificate to mimic legitimate cryptocurrency services, likely targeting users via brand impersonation. VirusTotal currently shows 0/95 detection engines recognizing the threat, underscoring its stealthy nature.  This domain poses a credible risk to cryptocurrency holders, particularly those accustomed to accessing exchange or wallet platforms via web interfaces. Its recent creation and clean detection profile suggest it may have been deployed to capitalize on current market activity or newly launched tokens. The hosting infrastructure at 185.226.92.168 further compounds the risk, as this IP has no established reputation but aligns with known bulletproof hosting patterns. Users entering credentials or private keys on this domain risk immediate asset loss.  If kra10-cc.com was visited, immediately revoke any exposed API keys or account credentials and enable multi-factor authentication on all cryptocurrency-related accounts. Scan local devices for malware using up-to-date endpoint protection, as stolen credentials may lead to secondary compromise. Report the incident to your wallet provider or exchange while preserving browser session data for forensic analysis. Consider blocking the domain and IP at the network perimeter to prevent further access.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2024-09-02 15:12:50
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- IP: 185.226.92.168

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/764e0830-cc7b-47f7-8785-cd3add53934f
- PhishDestroy: https://phishdestroy.io/domain/kra10-cc.com/
- LLM endpoint: https://phishdestroy.io/domain/kra10-cc.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/kra10-cc.com/
Last updated: 2026-03-27