# kraken5af44k24fwzohe6fvqfgxfsee4lgydb3ayzkfhlzqhuwlo33ad.org — MALICIOUS

> Domain kraken5af44k24fwzohe6fvqfgxfsee4lgydb3ayzkfhlzqhuwlo33ad.org is a brand impersonation threat flagged by 15 of 95 VirusTotal vendors.

## Summary
PhishDestroy identifies active brand impersonation threat involving domain kraken5af44k24fwzohe6fvqfgxfsee4lgydb3ayzkfhlzqhuwlo33ad.org. This domain is engaged in credential theft activities, specifically impersonating the cryptocurrency exchange Kraken. The threat is currently active and poses elevated risk to unsuspecting users.    This domain was flagged by 15 of 95 VirusTotal vendors, indicating significant malicious activity. The domain resolves to IP address 104.21.36.108 and was registered through NICENIC INTERNATIONAL GROUP CO., LIMITED on October 23, 2023. The SSL certificate is issued by Google Trust Services, which may contribute to a false sense of security for potential victims.    Current status of this domain is active, with elevated risk due to its impersonation of a well-known cryptocurrency brand. Immediate action is recommended: block the domain at network and DNS levels, flag the associated IP address, and alert users to avoid interacting with this domain. Additionally, organizations should update their threat intelligence feeds and security protocols to include this domain and its indicators of compromise.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)
- Target brand: Kraken

## Domain Intelligence
- Registered: 2023-10-23 22:07:24
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- IP: 104.21.36.108

## Detection Status
- VirusTotal: 15 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/f6da0a06-ed33-4cdb-bd64-7412ddf3033c
- PhishDestroy: https://phishdestroy.io/domain/kraken5af44k24fwzohe6fvqfgxfsee4lgydb3ayzkfhlzqhuwlo33ad.org/
- LLM endpoint: https://phishdestroy.io/domain/kraken5af44k24fwzohe6fvqfgxfsee4lgydb3ayzkfhlzqhuwlo33ad.org/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/kraken5af44k24fwzohe6fvqfgxfsee4lgydb3ayzkfhlzqhuwlo33ad.org/
Last updated: 2026-03-29