# app.ledglive.com — SUSPICIOUS

> Check app.ledglive.com - a credential harvesting phishing domain flagged by 4 of 95 VirusTotal vendors. Review the full report for detailed threat intelligence.

## Summary
PhishDestroy identifies app.ledglive.com as an active credential harvesting phishing domain targeting users with a fake login portal.

This domain was flagged by 4 of 95 VirusTotal vendors, raising immediate concerns over its legitimacy. Registered through Dynadot Inc on March 24, 2026, it resolves to IP 172.67.178.110 and utilizes a Let's Encrypt SSL certificate, which adds a false sense of security. The domain's recent creation date and low trust metrics suggest opportunistic malicious activity. 

Given its elevated risk status and active threat indicators, users should avoid interacting with app.ledglive.com. Security teams are advised to block this domain at the network perimeter and investigate any internal DNS resolutions to 172.67.178.110. Enhanced monitoring for credential theft attempts, particularly those mimicking legitimate login flows, is strongly recommended to prevent potential account compromise.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-24 16:18:40
- Registrar: Dynadot Inc
- IP: 172.67.178.110

## Detection Status
- VirusTotal: 4 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/app.ledglive.com
- PhishDestroy: https://phishdestroy.io/domain/app.ledglive.com/
- LLM endpoint: https://phishdestroy.io/domain/app.ledglive.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/app.ledglive.com/
Last updated: 2026-04-11