# ladger-us.wixstudio.com — SUSPICIOUS

> PhishDestroy identifies ladger-us.wixstudio.com as a Ledger hardware wallet phishing domain with 0/95 VirusTotal detections. Check the full report.

## Summary
PhishDestroy has flagged ladger-us.wixstudio.com as an active phishing domain impersonating Ledger hardware wallets. This fraudulent site leverages a deceptive domain name to trick users into divulging sensitive wallet recovery phrases or seed phrases, which are critical to cryptocurrency security. The domain was registered under a WixStudio subdomain to appear legitimate, but the naming convention specifically targets Ledger users—a high-value demographic for cryptocurrency theft. The site resolves to IP address 34.144.206.118, which is associated with hosting environments commonly used to deploy spoofing campaigns. This domain is currently under investigation but remains active, posing an immediate risk to Ledger device owners who may be lured via phishing emails, fake ads, or social media scams into entering their seed phrases on the fraudulent page.  This domain exhibits several red flags consistent with phishing infrastructure. VirusTotal analysis shows a concerning 0 detections out of 95 security engines—indicating it has not yet been widely blacklisted despite being active. The site uses a Let's Encrypt SSL certificate to mimic legitimacy, a common tactic among phishing operators to gain user trust. While the exact creation date and registrar details are not provided in the seed data, the use of a WixStudio subdomain suggests a recent registration aimed at exploiting Ledger’s brand recognition. Given Ledger’s prominence in the crypto space and the irreversible nature of seed phrase exposure, this domain presents a high-risk threat to users who interact with it.  If you have visited ladger-us.wixstudio.com or entered any information—such as a seed phrase, private key, or wallet credentials—immediately disconnect from the internet, revoke any permissions granted to the site, and transfer all remaining assets to a newly generated wallet with a cold storage device. Do not reuse seed phrases across wallets. Report the incident to Ledger support and to the platform where the phishing link was encountered. Consider using a reputable password manager or browser extension to block known phishing domains. Enable multi-factor authentication on all exchange and wallet accounts, and educate your network about this specific campaign to prevent further victims. Monitor blockchain transactions closely for unauthorized transfers.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: REGISTRAR_NOT_FOUND
- IP: 34.144.206.118

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/2f93b9bd-16a3-4c83-a3e3-fee511c4ecf9
- PhishDestroy: https://phishdestroy.io/domain/ladger-us.wixstudio.com/
- LLM endpoint: https://phishdestroy.io/domain/ladger-us.wixstudio.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ladger-us.wixstudio.com/
Last updated: 2026-04-12