# krccc.shop — MALICIOUS

> krccc.shop is flagged for phishing and social engineering. Avoid interacting and ensure your devices are protected from potential fraud attempts.

## Summary
PhishDestroy identifies krccc.shop as a high-risk phishing domain primarily used for generic phishing attacks targeting unsuspecting users. The threat level is elevated due to its social engineering tactics aiming to steal sensitive information.

This domain resolves to the IP address 144.31.79.234 and is registered through the REGRU-RU registrar. It has been flagged by Google Safe Browsing for social engineering activities and appears on three security blocklists. Additionally, VirusTotal reports that 10 out of 95 security vendors detect malicious activity related to krccc.shop. The domain was created recently, on March 4, 2026, which is common for fraudulent sites meant to operate temporarily.

Currently, krccc.shop is offline, which mitigates immediate risk. Users are advised to avoid visiting the domain and to maintain updated security software to protect against similar phishing attempts. Vigilance and caution remain essential when encountering unfamiliar or suspicious websites.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 0)
- Page title: krccc.shop

## Domain Intelligence
- Registered: 2026-03-04 13:07:01
- Registrar: REGRU-RU
- Country: RU
- IP: 144.31.79.234
- IP Country: FI
- IP City: Helsinki
- IP Org: AS213877 U1 DIGITAL SERVICES LTD
- Nameservers: ["ns1.reg.ru", "ns2.reg.ru"]
- SSL Issuer: Sectigo Limited / Sectigo Public Server Authentication CA DV E36

## Detection Status
- VirusTotal: 10 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "CRDF", "CyRadar", "Google Safebrowsing", "Gridinsoft", "Lionic", "Seclookup", "SOCRadar", "Webroot"]
- Google Safe Browsing: FLAGGED
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019c6418-132f-710e-8fb1-95541cf6810a.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/33c9923b-1a28-4217-b6b8-27327dd7e63d
- Wayback Machine: https://web.archive.org/web/https://krccc.shop
- PhishDestroy: https://phishdestroy.io/domain/krccc.shop/
- LLM endpoint: https://phishdestroy.io/domain/krccc.shop/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/krccc.shop/
Last updated: 2026-03-19