# kra19cc.com — SUSPICIOUS

> kra19cc.com is a phishing domain (4/95 on VirusTotal) mimicking a fake login page. Avoid entering any credentials—block it immediately to prevent credential.

## Summary
PhishDestroy identifies kra19cc.com as an active generic phishing domain leveraging deceptive login pages to harvest user credentials. The domain does not impersonate a specific brand but instead relies on generic lures to trick victims into submitting sensitive information. No evidence of a drainer kit or targeted brand imitation is currently associated with this infrastructure, though the generic nature increases its risk of successful deception.

This domain was flagged by 4 out of 95 security vendors on VirusTotal, indicating limited but present detection coverage. It is registered through ChocolateChipDomains, LLC, with the domain creation date set to November 20, 2025. The infrastructure resolves to IP address 76.223.54.146 and is secured with an SSL certificate issued by GoDaddy.com, Inc. Despite its recent creation, kra19cc.com remains unblocked by Google Safe Browsing and has not been listed on major threat intelligence feeds at this time.

At this time, kra19cc.com remains active and poses an elevated risk to users who may encounter it through phishing emails, social media links, or malicious advertisements. Immediate network-level blocking of the domain and IP address 76.223.54.146 is strongly recommended. Users should avoid interacting with the site, refrain from entering any credentials, and report the domain to their security teams. While detection rates are currently low, proactive blocking and user awareness remain the most effective defenses against this threat. Residual risk will persist until the domain is widely blacklisted or the hosting infrastructure is taken down.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2025-11-20 19:34:20
- Registrar: ChocolateChipDomains, LLC
- IP: 76.223.54.146

## Detection Status
- VirusTotal: 4 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/ebdd2c7c-9c99-4d1f-b644-66fcecc93fd3
- PhishDestroy: https://phishdestroy.io/domain/kra19cc.com/
- LLM endpoint: https://phishdestroy.io/domain/kra19cc.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/kra19cc.com/
Last updated: 2026-03-28