# kra35c.cc — MALICIOUS

> kra35c.cc flagged for credential phishing with 6/95 VirusTotal detections. Check the full report.

## Summary
PhishDestroy identifies kra35c.cc as an active credential phishing domain posing an elevated risk to users.

This domain was flagged by 6 out of 95 VirusTotal security vendors, indicating significant malicious activity. Registered through NICENIC INTERNATIONAL GROUP CO., LIMITED on March 14, 2025, kra35c.cc resolves to IP address 58.64.137.69. The domain’s recent creation date and low trust scores further corroborate its high-risk status, as it has already begun circulating in multiple threat feeds.

Credential phishing domains like kra35c.cc typically masquerade as legitimate login portals to steal usernames and passwords. Users should avoid interacting with this domain entirely. If accidentally accessed, do not enter any credentials and immediately scan devices for malware. Report the domain to your security provider or browser vendor for blocking. Organizations should add kra35c.cc to network blocklists and warn employees about this emerging threat.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)
- Page title: kra35c.cc

## Domain Intelligence
- Registered: 2025-03-14 11:24:38
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- IP: 58.64.137.69

## Detection Status
- VirusTotal: 6 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/d096d56a-55a7-4dff-8b34-001ce0a46d39
- PhishDestroy: https://phishdestroy.io/domain/kra35c.cc/
- LLM endpoint: https://phishdestroy.io/domain/kra35c.cc/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/kra35c.cc/
Last updated: 2026-03-29