# ledger-customer-care.com — SUSPICIOUS > PhishDestroy identifies ledger-customer-care.com as an active crypto_drainer phishing domain flagged by 3/95 VirusTotal scanners. Check the full report. ## Summary PhishDestroy identifies ledger-customer-care.com as an active crypto_drainer domain posing as a Ledger customer support portal. This fraudulent domain is designed to trick cryptocurrency holders into entering their recovery phrases or private keys, enabling attackers to drain digital assets directly. The domain mimics legitimate support channels, exploiting urgency and trust associated with hardware wallet customer care. This domain was flagged by only 3 out of 95 VirusTotal security vendors as of the latest scan. OwnRegistrar, Inc. registered ledger-customer-care.com on March 26, 2026, just days before the campaign became active. The domain resolves to IP address 87.121.79.166 and holds a valid SSL certificate issued by Let’s Encrypt, which increases its appearance of legitimacy. Despite its recent creation and low detection rate, the malicious intent is evidenced by its classification as a crypto_drainer tool designed to steal cryptocurrency. If you visited ledger-customer-care.com, assume your sensitive data may have been exposed. Immediately revoke any entered recovery phrases or private keys and transfer remaining funds to a clean wallet. Monitor your accounts for unauthorized transactions and consider revoking browser or app permissions granted to this domain. Report the domain to your antivirus provider and relevant platforms (e.g., IC3, Chainalysis). Do not reuse passwords or recovery phrases across services. Consider using hardware wallets with offline signing to minimize future exposure. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-03-26 17:00:39 - Registrar: OwnRegistrar, Inc. - IP: 87.121.79.166 ## Detection Status - VirusTotal: 3 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/54c99797-bcbd-4344-9a90-c2eb4b182ac5 - PhishDestroy: https://phishdestroy.io/domain/ledger-customer-care.com/ - LLM endpoint: https://phishdestroy.io/domain/ledger-customer-care.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/ledger-customer-care.com/ Last updated: 2026-03-26