# ldgerlive-desk.pages.dev — SUSPICIOUS

> ldgerlive-desk.pages.dev runs a crypto drainer that steals wallet credentials. 0/95 VirusTotal detections.

## Summary
PhishDestroy identifies ldgerlive-desk.pages.dev as an active crypto-draining phishing site posing as a legitimate crypto-asset dashboard. When victims connect their wallets, the page silently drains tokens via malicious JavaScript that intercepts wallet signatures and transfers funds to attacker-controlled addresses. The domain leverages Cloudflare Pages hosting and Google Trust Services SSL to appear legitimate, but its recent creation and zero VirusTotal detections (0/95 engines as of seed 31c51e) reveal it has evaded automated detection so far.  This domain was flagged on the basis of behavioral telemetry showing signature interception routines typical of crypto drainers. Technical indicators include the Cloudflare Pages origin server at 172.66.47.72, a Google Trust Services certificate issued within the last 30 days, and Cloudflare, Inc. as registrar. VirusTotal currently shows 0/95 positive detections, underscoring the need for human review rather than relying solely on automated scanning tools.  If you visited ldgerlive-desk.pages.dev, disconnect your wallet immediately using your wallet’s emergency disconnect feature, then revoke any token approvals via reputable block-explorer tools like Etherscan or Solscan. Do not approve any further transactions or sign messages from this domain. Report the incident to PhishDestroy for takedown and warning updates. Use only verified, community-audited crypto dashboards and always verify URLs via official channels before connecting wallets.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.47.72

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/441dba1d-ca19-4a6e-8a4a-5590fda6a3b8
- PhishDestroy: https://phishdestroy.io/domain/ldgerlive-desk.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/ldgerlive-desk.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ldgerlive-desk.pages.dev/
Last updated: 2026-03-23