# krd30.cc — SUSPICIOUS

> PhishDestroy identifies krd30.cc as a crypto drainer phishing site. 2/95 scanners flagged this domain. Verify this threat immediately on PhishDestroy.

## Summary
PhishDestroy has flagged krd30.cc as an active crypto drainer phishing domain with an elevated risk rating. This site is designed to trick users into connecting cryptocurrency wallets and drain funds, posing severe financial threats to visitors. The domain resolves to IP 103.224.212.118 and was registered on February 27, 2025 through Dynadot Inc. Security analysis shows only 2 out of 95 VirusTotal vendors have detected this threat, with no known presence on major blocklists, indicating low detection coverage despite active malicious activity.  The domain uses a Let's Encrypt SSL certificate to appear legitimate while hosting phishing infrastructure. With a recent creation date and minimal detection rates, this site represents a concealed but active threat. The absence of widespread blocklisting suggests attackers are rotating infrastructure to evade traditional defenses, making proactive verification essential for safety.  To mitigate risk, users should avoid visiting krd30.cc entirely. If wallet connection was attempted, immediately disconnect the wallet, revoke any suspicious permissions, and transfer remaining assets to a clean wallet. Report this domain to PhishDestroy for community protection and monitor financial accounts for unauthorized transactions. Remain vigilant against similar recently registered domains mimicking legitimate crypto services.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2025-02-27 14:31:36
- Registrar: Dynadot Inc
- IP: 103.224.212.118

## Detection Status
- VirusTotal: 2 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/29ee5439-e7d7-4a79-8f69-2bc48f9ce7db
- PhishDestroy: https://phishdestroy.io/domain/krd30.cc/
- LLM endpoint: https://phishdestroy.io/domain/krd30.cc/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/krd30.cc/
Last updated: 2026-03-28