# global-ledgr.wixstudio.com — MALICIOUS

> PhishDestroy identifies global-ledgr.wixstudio.com as a live crypto drainer impersonating Ledger hardware wallets; avoid this domain. 7/95 vendors flagged it.

## Summary
PhishDestroy has identified global-ledgr.wixstudio.com as a live phishing domain posing as a fake Ledger hardware wallet login portal designed to steal cryptocurrency. This domain serves a crypto drainer script that silently siphons funds from connected wallets the moment users authorize transactions. The page mimics the official Ledger Live interface, tricking victims into entering seed phrases or connecting wallets under the false impression they are performing routine updates or security checks.  This domain was flagged by 7 of 95 VirusTotal security vendors and has been added to two independent blocklists maintained by PhishingArmy and OISD. The site is hosted on Wix’s infrastructure (WixStudio) and resolves to IP 34.144.206.118, secured with a Let’s Encrypt SSL certificate. Based on available telemetry, the domain is actively distributing malicious payloads. Creation timestamps indicate recent deployment, consistent with the elevated threat profile observed.  If you have visited this domain or entered any credentials, disconnect all wallets immediately and revoke unauthorized permissions via your wallet’s settings. Do not reuse seed phrases or passwords. Report the incident to PhishDestroy and scan your devices with updated antivirus software. Always verify URLs through official channels before entering sensitive information—use tools like PhishDestroy’s real-time verification to confirm legitimacy.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: REGISTRAR_NOT_FOUND
- IP: 34.144.206.118

## Detection Status
- VirusTotal: 7 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["PhishingArmy", "OISD"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/4ded0ddb-0f24-4923-b44b-2722d14bdd92
- PhishDestroy: https://phishdestroy.io/domain/global-ledgr.wixstudio.com/
- LLM endpoint: https://phishdestroy.io/domain/global-ledgr.wixstudio.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/global-ledgr.wixstudio.com/
Last updated: 2026-03-29