# access-ledgr-welcome.pages.dev — SUSPICIOUS

> PhishDestroy flags access-ledgr-welcome.pages.dev as a crypto drainer impersonating Ledger, with 0/95 VirusTotal detections (seed 930bcf).

## Summary
PhishDestroy identifies access-ledgr-welcome.pages.dev as an active crypto drainer posing as the Ledger hardware wallet welcome page. This domain mimics the legitimate Ledger onboarding flow to trick users into connecting their wallets and signing malicious transactions that drain funds directly to attacker-controlled addresses. Unsuspecting visitors who enter seed phrases or approve wallet connections risk losing cryptocurrency assets without recourse.  This domain was flagged through PhishDestroy’s automated pipeline and carries several red flags: it currently shows 0 detections on VirusTotal out of 95 scanners, is registered through Cloudflare, Inc., resolves to IP 172.66.44.231, and operates under Google Trust Services SSL certificates. While these factors alone do not confirm malicious intent, the combination with the active crypto drainer behavior elevates the risk profile significantly.  If you visited access-ledgr-welcome.pages.dev, disconnect your wallet immediately, revoke any suspicious approvals via blockchain explorers or wallet interfaces, and consider transferring remaining assets to a new, hardware-isolated wallet. Then report the domain to PhishDestroy for further analysis and blacklisting. Always verify URLs against official sources and use bookmarked links for sensitive services like Ledger.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.44.231

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/fa188c53-804e-4d5d-9032-1cba90a3dfeb
- PhishDestroy: https://phishdestroy.io/domain/access-ledgr-welcome.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/access-ledgr-welcome.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/access-ledgr-welcome.pages.dev/
Last updated: 2026-03-24