# krab6------c---c.ru — SUSPICIOUS

> PhishDestroy identifies krab6------c---c.ru as a crypto drainer phishing site with 0/95 VirusTotal detections. Act now to block and report this active threat.

## Summary
krab6------c---c.ru has been flagged by PhishDestroy as an active crypto drainer phishing domain under investigation. This domain presents a significant risk to cryptocurrency holders, as it is designed to deceive users into connecting wallets and approving malicious transactions that drain funds. The threat level remains under investigation, but its active status and infrastructure suggest imminent danger to unsuspecting victims.  This domain resolves to IP 198.13.158.7 and was registered through REGRU-RU on March 07, 2026. VirusTotal currently shows 0 detections out of 95 scans, indicating that mainstream security tools have not yet flagged this domain. It utilizes a Let's Encrypt SSL certificate, which adds a veneer of legitimacy but does not guarantee safety. Additionally, the domain's recent creation date suggests a hasty deployment, likely to evade detection before gaining traction in phishing campaigns. The lack of detections at this stage is particularly concerning, as it allows the domain to operate undetected while targeting potential victims.  To mitigate risks associated with crypto drainer phishing domains like krab6------c---c.ru, users and organizations must take immediate action. First, block the domain and its associated IP address (198.13.158.7) at the network and endpoint levels to prevent access. Second, ensure that wallet connections are scrutinized for red flags, such as unfamiliar domains or sudden transaction approvals. Third, report the domain to cybersecurity platforms like VirusTotal, PhishDestroy, and relevant blockchain security teams to expedite detection and takedown. Finally, educate cryptocurrency users about the risks of connecting wallets to untrusted sites and the importance of verifying URLs and SSL certificates before engaging.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-07 09:29:54
- Registrar: REGRU-RU
- IP: 198.13.158.7

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/f14d25bd-c162-49c2-8265-7331d8c24c38
- PhishDestroy: https://phishdestroy.io/domain/krab6------c---c.ru/
- LLM endpoint: https://phishdestroy.io/domain/krab6------c---c.ru/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/krab6------c---c.ru/
Last updated: 2026-03-28