# io-en-ledr-learn.pages.dev — SUSPICIOUS

> io-en-ledr-learn.pages.dev impersonates Ledger Live Wallet to steal crypto. VirusTotal score 0/95. Check the full report.

## Summary
PhishDestroy identifies io-en-ledr-learn.pages.dev as a confirmed phishing site falsely representing Ledger Live Wallet, actively targeting cryptocurrency users with fraudulent 'Secure Crypto Management' credentials. The domain leverages brand impersonation to deceive victims into entering sensitive wallet credentials under the guise of legitimate Ledger services. Technical analysis reveals no known drainer kit, suggesting a focus on credential harvesting rather than direct fund extraction.  This domain resolves to IP 188.114.97.3 and is registered through Cloudflare, Inc., with an SSL certificate issued by Google Trust Services. VirusTotal currently reports 0/95 detections, indicating no immediate blacklist recognition. The page title mirrors Ledger’s official branding, reinforcing its deceptive intent. While creation date remains unverified, the domain’s active status and Cloudflare proxying complicate rapid takedown efforts.  Despite its low detection rate, io-en-ledr-learn.pages.dev poses significant risk due to its ongoing availability and active phishing campaign. Users are advised to avoid interacting with this domain and verify all cryptocurrency-related URLs via official Ledger channels. The remaining risk is classified as high pending further takedown actions or additional threat intelligence updates.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: alive (HTTP ?)
- Target brand: Ledger
- Page title: Ledger Live Wallet — Secure Crypto Management

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.97.3

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/97059ed3-3d9c-4897-9677-edcee97a1e8f
- PhishDestroy: https://phishdestroy.io/domain/io-en-ledr-learn.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/io-en-ledr-learn.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/io-en-ledr-learn.pages.dev/
Last updated: 2026-04-12