# friendsledger.com — SUSPICIOUS > friendsledger.com mimics Ledger's official site to steal crypto. Registered on Christmas 2023, it has 0/95 VirusTotal detections. Avoid entering wallet details! ## Summary PhishDestroy identifies friendsledger.com as a fraudulent website impersonating Ledger, a leading cryptocurrency wallet provider. This domain was flagged due to its deceptive branding and suspicious infrastructure, which is designed to trick users into revealing sensitive wallet credentials or payment information. The site employs classic brand impersonation tactics, such as mirroring Ledger’s official website design and language, to appear legitimate at first glance. Visitors should exercise extreme caution, as interactions with this site may result in financial loss or compromised accounts. This domain was flagged by PhishDestroy after analysis revealed multiple red flags. friendsledger.com resolved to IP address 76.76.21.22 and was registered through TuringSign Inc. (d/b/a Cosmotown) on December 25, 2023—less than a month ago. Crucially, the site holds a Let's Encrypt SSL certificate, which is often used by threat actors to lend false credibility to phishing pages. Despite its recent creation and deceptive tactics, VirusTotal currently shows 0 detections out of 95 scans, indicating that many security tools have not yet flagged it. This highlights the importance of proactive user vigilance, as automated systems may lag behind emerging threats. If you have visited friendsledger.com, do not enter any wallet recovery phrases, private keys, or payment details. Ledger users should immediately check their official wallet app or Ledger’s verified website (https://www.ledger.com) for any unusual activity. Scan your device with reputable antivirus software, such as Malwarebytes or Bitdefender, to check for infections. Report the domain to Ledger’s phishing team and block it in your browser. For future protection, bookmark Ledger’s official site and enable two-factor authentication (2FA) on all cryptocurrency-related accounts. Always verify URLs carefully—look for misspellings, odd domain extensions, or lack of HTTPS (though note that HTTPS alone does not guarantee safety). When in doubt, contact Ledger’s official support channels directly through their verified channels. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) - Target brand: Ledger ## Domain Intelligence - Registered: 2023-12-25 10:01:03 - Registrar: TuringSign Inc. d/b/a Cosmotown - IP: 76.76.21.22 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/fc77cb31-3e0f-4796-af6c-4a415897404a - PhishDestroy: https://phishdestroy.io/domain/friendsledger.com/ - LLM endpoint: https://phishdestroy.io/domain/friendsledger.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/friendsledger.com/ Last updated: 2026-03-22