# cdn-ledgerdesk.pages.dev — SUSPICIOUS

> PhishDestroy flags cdn-ledgerdesk.pages.dev as an active crypto drainer site with 0/95 VirusTotal detections. Verify this link before clicking.

## Summary
PhishDestroy identifies cdn-ledgerdesk.pages.dev as an active cryptocurrency drainer posing as a legitimate service. This site is designed to trick visitors into connecting their digital wallets, whereupon hidden scripts silently drain tokens to attacker-controlled addresses. Visitors may arrive via phishing emails, fake ads, or imposter social-media posts that mimic well-known crypto platforms. Once a wallet is connected, the drainer can authorize transactions without additional approval, making detection nearly impossible until funds vanish. This mechanism is particularly dangerous because it exploits the irreversible nature of blockchain transactions, leaving victims with no recourse for recovery. 


Technical analysis shows this domain was registered through Cloudflare, Inc. and currently resolves to IP 172.66.44.146. The SSL certificate is issued by Google Trust Services, which does not guarantee legitimacy—many malicious sites use valid certificates to appear trustworthy. As of the latest scan, VirusTotal detected 0 out of 95 security engines flagging this domain, placing it below the radar of most automated defenses. This low detection rate is common among newly deployed cryptocurrency drainers that evolve rapidly to evade signature-based detection. The domain uses Cloudflare Pages, a legitimate hosting platform, which adds another layer of obfuscation and makes takedowns more difficult. 


If you visited cdn-ledgerdesk.pages.dev, immediately disconnect your wallet, revoke any unauthorized connections in your wallet settings, and transfer remaining assets to a new, secure wallet. Do not approve any unexpected transaction requests or sign messages you didn’t initiate. Clear your browser cache and cookies, then run a full scan using reputable antivirus software. Report the domain to PhishDestroy using the unique seed 0ff940 for further analysis. Avoid interacting with this site or any links associated with it. Stay vigilant—cryptocurrency drainers often mimic legitimate services like Ledger, MetaMask, or DeFi platforms, so always verify URLs through official channels before connecting your wallet.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.44.146

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/fa8b3d67-fbf7-47e2-b349-8531b507acbe
- PhishDestroy: https://phishdestroy.io/domain/cdn-ledgerdesk.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/cdn-ledgerdesk.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/cdn-ledgerdesk.pages.dev/
Last updated: 2026-03-24