# ledg-er-live-desktop-app.pages.dev — SUSPICIOUS > PhishDestroy identifies ledg-er-live-desktop-app.pages.dev as a brand impersonation site pretending to be Ledger. ## Summary PhishDestroy has flagged ledg-er-live-desktop-app.pages.dev as an active brand impersonation domain targeting Ledger users. The site mimics Ledger's branding to deceive victims into entering sensitive credentials or downloading malicious software, a tactic commonly associated with crypto drainers or credential phishing campaigns. The domain's structure, including the hyphenated ‘ledg-er’ variation, is designed to mislead users into believing it is an official Ledger service portal. This domain exhibits several technical indicators that warrant heightened scrutiny. According to VirusTotal, ledg-er-live-desktop-app.pages.dev currently has 0 detections out of 95 security engines, indicating it has not yet been flagged by mainstream antivirus or browser-based detection systems. The domain is registered through Cloudflare, Inc., and resolves to IP address 172.66.44.114. The SSL certificate is issued by Google Trust Services, which may lend a false sense of legitimacy. Additionally, PhishDestroy notes that this domain is not currently listed on the Google Safe Browsing (GSB) blocklist, further increasing its potential to evade automated detection. These factors collectively suggest the domain is newly active or intentionally configured to avoid early detection. As of the latest assessment, ledg-er-live-desktop-app.pages.dev remains active and under active investigation by PhishDestroy. No confirmed takedown or blocklisting has occurred at this time, presenting an ongoing risk to users who may encounter the domain through phishing emails, social engineering tactics, or malicious advertisements. Users who interact with this domain could be exposed to credential theft, malware delivery, or cryptocurrency draining mechanisms. PhishDestroy advises immediate verification of any suspicious links claiming to be Ledger services and recommends avoiding interaction with this domain until further notice. The residual risk remains high due to its undetected status and sophisticated impersonation tactics. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) - Target brand: Ledger ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 172.66.44.114 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/2bca8ce9-cd89-4c0e-8516-3ef5f44723f8 - PhishDestroy: https://phishdestroy.io/domain/ledg-er-live-desktop-app.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/ledg-er-live-desktop-app.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/ledg-er-live-desktop-app.pages.dev/ Last updated: 2026-03-24