# ledger-live-desktopp-eek.pages.dev — SUSPICIOUS

> PhishDestroy identifies ledger-live-desktopp-eek.pages.dev impersonating Ledger Live Desktop software. Only 0 of 95 VirusTotal vendors flagged it.

## Summary
PhishDestroy identifies the active domain ledger-live-desktopp-eek.pages.dev as a brand impersonation threat targeting Ledger users. This domain currently mimics the official Ledger Live Desktop application to deceive victims into downloading malicious software or surrendering sensitive credentials. The campaign remains under investigation as security vendors continue to assess its malicious infrastructure and payloads.

This domain was flagged by 0 of 95 VirusTotal vendors, indicating it has evaded detection by most antivirus engines as of the latest scan. It was registered through Cloudflare, Inc. and resolves to the IP address 172.66.46.208. The domain utilizes a Google Trust Services SSL certificate, which may enhance its credibility in phishing lures. These technical indicators suggest a sophisticated attempt to leverage trusted infrastructure to bypass security controls and increase the likelihood of successful compromise.

PhishDestroy assesses this campaign as an active and evolving threat with low initial detection rates but high potential impact due to its direct impersonation of a widely used cryptocurrency wallet platform. Users are advised to avoid downloading software from unofficial domains, verify the authenticity of download sources via Ledger’s official website (ledger.com), and report any suspicious activity involving Ledger-branded services. Security teams should monitor for connections to 172.66.46.208 and consider blocking the domain at the network perimeter. Immediate action is recommended to prevent potential credential theft or malware installation.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)
- Target brand: Ledger

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.46.208

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/6268d520-650d-408f-94a2-7717e2f8d008
- PhishDestroy: https://phishdestroy.io/domain/ledger-live-desktopp-eek.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/ledger-live-desktopp-eek.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ledger-live-desktopp-eek.pages.dev/
Last updated: 2026-03-22