# cn-ledger.com — MALICIOUS

> cn-ledger.com impersonates Ledger to trick users with fake logins. Flagged by 10 of 95 security vendors. Always verify on PhishDestroy.

## Summary
PhishDestroy identifies cn-ledger.com as an elevated risk domain engaging in brand impersonation targeting Ledger. The site aims to deceive users with fake login pages to harvest credentials, potentially leading to crypto asset theft or account compromise.

This domain was created recently on October 06, 2025, and is registered through Dynadot Inc. VirusTotal reports that 10 out of 95 security vendors flag it as malicious. It resolves to the IP address 35.241.96.249 and uses an SSL certificate issued by TrustAsia Technologies, Inc. These combined factors indicate active attempts to appear legitimate while hosting fraudulent content.

Users should avoid interacting with cn-ledger.com and never enter sensitive Ledger credentials on this site. Always verify Ledger URLs through official sources or trusted security tools like PhishDestroy. Enabling multi-factor authentication on Ledger accounts and monitoring for unusual activity are critical steps to mitigate risk from these impersonation threats.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)
- Target brand: Ledger

## Domain Intelligence
- Registered: 2025-10-06 05:22:41
- Registrar: Dynadot Inc
- IP: 35.241.96.249

## Detection Status
- VirusTotal: 10 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/6f310081-3f6d-48ad-a894-e071d8cc1f53
- PhishDestroy: https://phishdestroy.io/domain/cn-ledger.com/
- LLM endpoint: https://phishdestroy.io/domain/cn-ledger.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/cn-ledger.com/
Last updated: 2026-04-14