# ladger-live-usae.pages.dev — SUSPICIOUS > ladger-live-usae.pages.dev actively hosts a crypto drainer mimicking Ledger Live, flagged by 0 of 95 VirusTotal vendors. Block immediately. ## Summary PhishDestroy identifies ladger-live-usae.pages.dev as a live crypto drainer masquerading as the legitimate Ledger Live platform. This domain is categorized under active brand impersonation and is currently under investigation for malicious activity. End users should refrain from interacting with the site or any associated links to mitigate exposure to credential theft and fund misappropriation. This domain was flagged by zero of 95 VirusTotal vendors, indicating a potential zero-day threat or evasion tactic. It is registered through Cloudflare, Inc., resolves to IP address 188.114.97.3, and operates under a Google Trust Services SSL certificate. The domain’s infrastructure and reputation remain unchecked by major threat intelligence platforms, with no confirmed presence on real-time blocklists as of the latest scan. These factors suggest a newly emerging or actively evolving campaign designed to evade detection. Despite the absence of detections on VirusTotal, the domain’s configuration and operational context strongly indicate malicious intent. The use of a Google-issued SSL certificate lends superficial legitimacy, while the impersonation of a widely recognized brand such as Ledger increases the likelihood of successful deception. The infrastructure’s reliance on Cloudflare suggests an attempt to obscure origin and evade network-level blocking. Security teams are advised to immediately block ladger-live-usae.pages.dev at the DNS and firewall levels, apply URL filtering rules to prevent access, and monitor for exfiltrated credentials or cryptocurrency transaction anomalies. End users should verify the authenticity of any Ledger-related communications through official channels and avoid entering sensitive data into untrusted web interfaces. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 188.114.97.3 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/ladger-live-usae.pages.dev - PhishDestroy: https://phishdestroy.io/domain/ladger-live-usae.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/ladger-live-usae.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/ladger-live-usae.pages.dev/ Last updated: 2026-04-10