# kramark.cc — SUSPICIOUS

> PhishDestroy flags kramark.cc as a credential phishing site, created Dec 2025. 2/95 VirusTotal vendors detect it. Check the full report.

## Summary
PhishDestroy identifies kramark.cc as a credential phishing site. This domain likely imitates a legitimate service to steal usernames and passwords. The domain uses an SSL certificate from Google Trust Services to appear trustworthy, but its recent creation date raises concerns.

Technical indicators include a VirusTotal detection ratio of 2/95. The domain kramark.cc was registered through NICENIC INTERNATIONAL GROUP CO., LIMITED on December 10, 2025, and resolves to IP address 188.114.96.3. These details, combined with the generic nature of the domain name, suggest malicious intent.

Users who have visited kramark.cc should immediately change their passwords for any accounts where they used the same credentials. They should also scan their devices for malware and be cautious of any unsolicited emails or messages. It's crucial to report the phishing attempt to relevant authorities to help prevent further attacks.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2025-12-10 17:16:53
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- IP: 188.114.96.3

## Detection Status
- VirusTotal: 2 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/d2b765c8-5d5e-4d04-a398-9eacbe68410e
- PhishDestroy: https://phishdestroy.io/domain/kramark.cc/
- LLM endpoint: https://phishdestroy.io/domain/kramark.cc/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/kramark.cc/
Last updated: 2026-03-28