# kra17att.cc — MALICIOUS

> kra17att.cc is a crypto drainer site flagged by 12/95 security vendors. Avoid this fake login portal; verify any suspicious links using PhishDestroy for safety.

## Summary
PhishDestroy identifies kra17att.cc as an active crypto drainer domain designed to steal cryptocurrency from unsuspecting users. This fraudulent site impersonates legitimate crypto platforms to trick victims into connecting their wallets and approving fraudulent transactions. Once connected, the drainer silently transfers funds to attacker-controlled wallets without requiring additional approvals, making it a high-risk threat to digital assets.  This domain was flagged by 12 out of 95 security vendors on VirusTotal, indicating widespread recognition of its malicious intent. kra17att.cc was created on January 19, 2026, and is registered through Gname 185 Inc, a registrar often associated with high-risk domains. The site uses a Let's Encrypt SSL certificate to appear legitimate and resolves to IP address 45.130.151.196, which hosts multiple suspicious domains.  If you visited kra17att.cc or entered any information, disconnect your wallet immediately and revoke any suspicious permissions through your wallet’s settings. Do not interact further with this domain. Use PhishDestroy to verify any suspicious links before clicking or entering credentials. Report this domain to your wallet provider and local cybercrime units to help prevent further attacks.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-01-19 09:06:44
- Registrar: Gname 185 Inc
- IP: 45.130.151.196

## Detection Status
- VirusTotal: 12 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/610b8c26-8a01-480a-85c9-88f8e38226fd
- PhishDestroy: https://phishdestroy.io/domain/kra17att.cc/
- LLM endpoint: https://phishdestroy.io/domain/kra17att.cc/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/kra17att.cc/
Last updated: 2026-03-28