# mykrkenlogin.wordpress.com — SUSPICIOUS > mykrkenlogin.wordpress.com flagged as brand impersonation targeting Kraken with 0/95 VirusTotal detections. ## Summary PhishDestroy identifies the domain mykrkenlogin.wordpress.com as an active brand impersonation site targeting Kraken. The threat remains under investigation but exhibits clear indicators of malicious intent, including the replication of Kraken’s branding to deceive users. This advisory serves as an early warning to security teams to monitor and mitigate potential exposure. The domain mykrkenlogin.wordpress.com was created on March 03, 2000, and is registered through MarkMonitor, Inc., a registrar often leveraged for legitimate purposes but also historically associated with malicious domain registrations. Resolving to IP 192.0.78.13, the site operates under a Let's Encrypt SSL certificate, which may be used to lend an air of legitimacy. Notably, VirusTotal currently flags the domain with 0 detections out of 95 vendors, indicating a low initial detection rate. This lack of early-stage detection underscores the importance of proactive threat hunting and domain reputation analysis. Given the domain’s active status and the specific targeting of Kraken, organizations and individuals are advised to block mykrkenlogin.wordpress.com at the network perimeter and DNS levels. Users should be alerted to verify all Kraken-related communications through official channels and avoid interacting with unsolicited login prompts. Security teams should also monitor for any associated infrastructure or additional domains that may emerge from this threat actor. Regular updates to blocklists and user awareness training are critical to mitigating the risk of credential theft or crypto drainer activity. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) - Target brand: Kraken ## Domain Intelligence - Registered: 2000-03-03 12:13:23 - Registrar: MarkMonitor, Inc. - IP: 192.0.78.13 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/mykrkenlogin.wordpress.com - PhishDestroy: https://phishdestroy.io/domain/mykrkenlogin.wordpress.com/ - LLM endpoint: https://phishdestroy.io/domain/mykrkenlogin.wordpress.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/mykrkenlogin.wordpress.com/ Last updated: 2026-04-06