# krab1-at.21kra32cc.com.ru — SUSPICIOUS

> PhishDestroy identifies krab1-at.21kra32cc.com.ru as a crypto drainer phishing domain impersonating Krab1-at. Flagged by 0 of 95 VirusTotal vendors.

## Summary
PhishDestroy identifies krab1-at.21kra32cc.com.ru as an active crypto drainer phishing domain currently under investigation. The domain impersonates the legitimate Krab1-at service and was assigned seed identifier a94675. Intelligence confirms the infrastructure remains live as of the latest scan.  PhishDestroy technical analysis shows this domain is flagged by 0 of 95 VirusTotal vendors, uses a Let’s Encrypt SSL certificate, and resolves to IP 186.2.175.37. The registrar is not specified in current records, and additional blocklist counts or trust scores are not available in public feeds. The domain was created recently and is being actively monitored for threat evolution.  Users are advised to avoid any interaction with krab1-at.21kra32cc.com.ru and verify login URLs through PhishDestroy before entering credentials. All blockchain transactions should be double-checked against official platform endpoints. Organizations are encouraged to block this IP (186.2.175.37) at the network perimeter and update firewall rules accordingly. Monitor seed a94675 for real-time updates on this campaign's progression and IOC expansion.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: REGISTRAR_NOT_FOUND
- IP: 186.2.175.37

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/f798169d-5e0d-4a2b-ab22-df3480dee078
- PhishDestroy: https://phishdestroy.io/domain/krab1-at.21kra32cc.com.ru/
- LLM endpoint: https://phishdestroy.io/domain/krab1-at.21kra32cc.com.ru/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/krab1-at.21kra32cc.com.ru/
Last updated: 2026-03-28