# kra13cc.cc — MALICIOUS

> kra13cc.cc hosts elevated risk generic phishing targeting users. Flagged by 14 of 95 VirusTotal vendors. Check the full report.

## Summary
PhishDestroy identifies kra13cc.cc as an active threat domain engaged in generic phishing attacks, posing an elevated risk to internet users. There is no specific brand impersonated in this case, but the domain is utilized to deceive victims through fraudulent means. The domain remains active and continues to present a significant security concern.

This domain was created recently on September 16, 2024, and is registered via NICENIC INTERNATIONAL GROUP CO., LIMITED. It resolves to the IP address 185.226.92.168. Security detection systems have flagged this domain on 1 blocklist, and it is specifically blocked by MetaMask. VirusTotal analysis reports that 14 out of 95 security vendors consider kra13cc.cc malicious. Additionally, the domain uses a Let's Encrypt SSL certificate, which may lend it superficial legitimacy.

Given the elevated risk level and current active status, kra13cc.cc should be treated as a high-threat entity. Users and security professionals are advised to avoid interacting with this domain. It is recommended to maintain up-to-date endpoint protections and ensure that this domain is added to local and enterprise blocklists. Continuous monitoring and rapid incident response actions should be prioritized to mitigate risks associated with this phishing threat.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)
- Page title: kra13cc.cc/

## Domain Intelligence
- Registered: 2024-09-16 21:49:00
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- IP: 185.226.92.168

## Detection Status
- VirusTotal: 14 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["MetaMask"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/65874a8d-cf72-47cd-9802-396b10ceadde
- PhishDestroy: https://phishdestroy.io/domain/kra13cc.cc/
- LLM endpoint: https://phishdestroy.io/domain/kra13cc.cc/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/kra13cc.cc/
Last updated: 2026-03-26