# ladger-co-start-us.pages.dev — SUSPICIOUS

> ladger-co-start-us.pages.dev mimics Ledger wallets to harvest crypto credentials. Flagged by 2/95 VirusTotal engines; hosted on 188.114.97.3 via Cloudflare.

## Summary
PhishDestroy identifies ladger-co-start-us.pages.dev as an active cryptocurrency wallet phishing domain operating at elevated risk. The threat specifically involves the impersonation of Ledger brand assets to trick users into entering recovery phrases or private keys, enabling immediate theft of digital assets.  This domain resolves to Internet Protocol 188.114.97.3 and is registered through Cloudflare, Inc., leveraging Google Trust Services for an SSL certificate to appear legitimate. VirusTotal confirms detection by 2 of 95 participating security vendors, indicating partial coverage but reinforcing the need for caution. The Cloudflare Pages hosting platform provides rapid deployment, while the Google-trusted certificate increases the likelihood of user engagement with malicious prompts.  Immediate mitigation requires users to avoid entering sensitive data on any page hosted at ladger-co-start-us.pages.dev or similar Cloudflare Pages domains soliciting Ledger credentials. Organizations should monitor endpoint logs for connections to 188.114.97.3 and block via network firewall rules. Security teams are advised to add this domain to browser blocklists and warn users via security awareness training to verify URLs and use hardware wallets for recovery operations. Always access Ledger services directly through ledger.com or official app channels.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.97.3

## Detection Status
- VirusTotal: 2 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/36ecd1e9-b377-419e-bda8-5fd20d224ae3
- PhishDestroy: https://phishdestroy.io/domain/ladger-co-start-us.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/ladger-co-start-us.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ladger-co-start-us.pages.dev/
Last updated: 2026-03-22