# kra33ccc.com — MALICIOUS

> kra33ccc.com identified as a crypto drainer, flagged by 7 of 95 VirusTotal vendors. Immediate block recommended to prevent asset theft.

## Summary
PhishDestroy identifies kra33ccc.com as an active crypto drainer posing as a cryptocurrency service. The domain is currently live and leverages deceptive tactics to trick users into connecting crypto wallets and approving malicious transactions. This operation targets unsuspecting cryptocurrency holders, aiming to drain digital assets under the guise of legitimate interaction.  This domain was flagged by 7 of 95 VirusTotal vendors, indicating widespread detection of its malicious nature. Registered on June 21, 2025, through NICENIC INTERNATIONAL GROUP CO., LIMITED, it resolves to IP address 188.114.96.3 and holds a Google Trust Services SSL certificate. Despite its seemingly trustworthy SSL configuration, the low detection ratio and recent creation date suggest a hastily deployed threat designed to exploit user trust in cryptocurrency ecosystems.  Users and organizations are advised to block kra33ccc.com at the network level and avoid any interaction with the domain or its associated IP. Security teams should update firewall rules, DNS blacklists, and endpoint protection measures to include this domain and IP. Additionally, cryptocurrency users should exercise heightened caution when engaging with unfamiliar platforms, verify URLs meticulously, and use hardware wallets or transaction simulation tools to prevent unauthorized asset transfers.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2025-06-21 07:39:13
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- IP: 188.114.96.3

## Detection Status
- VirusTotal: 7 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/647224d5-027f-4d41-8371-f3970c6e8e07
- PhishDestroy: https://phishdestroy.io/domain/kra33ccc.com/
- LLM endpoint: https://phishdestroy.io/domain/kra33ccc.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/kra33ccc.com/
Last updated: 2026-03-29