# desktop-ledggerlive.pages.dev — SUSPICIOUS

> desktop-ledgerlive.pages.dev mimics Ledger Live's desktop app to steal crypto wallet credentials. Hosted on Cloudflare with 0/95 VirusTotal detections, users.

## Summary
PhishDestroy identifies desktop-ledgerlive.pages.dev as a confirmed cryptocurrency phishing site masquerading as the legitimate Ledger Live desktop application. This domain specifically targets users seeking secure crypto wallet management by impersonating official software, posing a direct threat to cryptocurrency holdings and personal financial data.

This domain was flagged by PhishDestroy's automated systems due to its malicious impersonation tactics. Intelligence reveals it is registered through Cloudflare, Inc., resolving to IP address 172.66.45.14, with a Google Trust Services SSL certificate. VirusTotal currently shows 0/95 detections despite active phishing activity, indicating it has not yet been widely blacklisted. The domain operates under Cloudflare's Pages.dev service, which is frequently abused for phishing campaigns due to its legitimate infrastructure.

Immediate mitigation is critical for users who may have interacted with this domain. Do not download any applications or enter credentials on this site. Users who have already entered wallet recovery phrases or private keys should immediately transfer remaining funds to a newly generated wallet using official Ledger Live software. Enable two-factor authentication on all crypto accounts and revoke any permissions granted to suspicious applications. Report the domain to Google Safe Browsing, Cloudflare Abuse, and local cybercrime units to aid in its takedown.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.45.14

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/desktop-ledggerlive.pages.dev
- PhishDestroy: https://phishdestroy.io/domain/desktop-ledggerlive.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/desktop-ledggerlive.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/desktop-ledggerlive.pages.dev/
Last updated: 2026-04-04