# ledger-live-desk-top-us.pages.dev — MALICIOUS

> PhishDestroy flags ledger-live-desk-top-us.pages.dev as a crypto drainer impersonating Ledger. 12/95 security vendors detect this phishing kit.

## Summary
PhishDestroy identifies the active domain ledger-live-desk-top-us.pages.dev as a crypto-asset drainer impersonating the Ledger hardware wallet brand. The page uses deceptive branding to trick users into connecting wallets or entering recovery phrases, at which point the drainer silently siphons tokens to attacker-controlled addresses. No custom drainer kit hash or JS payload was visible in passive scans, indicating the payload may be delivered via staged JavaScript fetched at run-time.    This domain was flagged by 12 of 95 VirusTotal security vendors and is served via Cloudflare with Google Trust Services SSL terminating at IP 172.66.45.11. The Cloudflare Pages subdomain was created recently and currently remains unlisted by Google Safe Browsing; public blocklists already count several detections, but coverage is not yet universal.    The site remains live at the time of analysis. PhishDestroy recommends users avoid downloading any software promoted through this domain and to verify download URLs against PhishDestroy’s database before installation. While the immediate risk is elevated due to active hosting and partial detection, widespread blacklisting is still propagating, so continued vigilance is advised.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)
- Target brand: Ledger

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.45.11

## Detection Status
- VirusTotal: 12 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/21d690f9-2695-4c45-b6f5-e0436653907d
- PhishDestroy: https://phishdestroy.io/domain/ledger-live-desk-top-us.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/ledger-live-desk-top-us.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ledger-live-desk-top-us.pages.dev/
Last updated: 2026-03-22