# ledger-official-wallet.pro — MALICIOUS > ledger-official-wallet.pro is an active crypto drainer mimicking Ledger Wallet. 19 of 95 VirusTotal vendors flag this domain—avoid clicks, verify URLs, and. ## Summary PhishDestroy identifies ledger-official-wallet.pro as an active crypto-drainer domain masquerading as the official Ledger Wallet service. The domain is engineered to deceive users into connecting cryptocurrency wallets and authorizing malicious transfers under the guise of legitimate wallet operations. Current telemetry confirms the infrastructure is operational and engaged in active credential and fund harvesting campaigns. ledger-official-wallet.pro was registered on April 12, 2026, through NICENIC INTERNATIONAL GROUP CO., LIMITED, resolving to IP 188.114.96.3. It is currently flagged by 19 of 95 VirusTotal security vendors and blocked by two independent threat intelligence platforms: OISD and Hagezi. The domain utilizes a Let's Encrypt SSL certificate, which does not guarantee legitimacy, and exhibits low trust scores across multiple reputation engines due to confirmed malicious behaviors including crypto wallet draining scripts. Users are advised to treat ledger-official-wallet.pro as a confirmed threat vector. Avoid visiting or interacting with the domain under any circumstance. Verify official Ledger URLs directly through ledger.com or the official mobile application before any wallet-related action. Update local blocklists with the domain and IP 188.114.96.3. Report any unauthorized transactions or suspicious connections to support@ledger.com and relevant financial authorities immediately. Monitor connected wallets for unusual activity and revoke any unauthorized permissions through your wallet interface. This domain and its associated infrastructure should be considered high-risk and should not be treated as safe for any user interaction. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-04-12 19:58:04 - Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED - IP: 188.114.96.3 ## Detection Status - VirusTotal: 19 vendors flagged - Google Safe Browsing: clean - Blocklists: 2 hits Lists: ["OISD", "Hagezi"] ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/450c01be-9ce4-46ef-b057-ee16cc9b8394 - PhishDestroy: https://phishdestroy.io/domain/ledger-official-wallet.pro/ - LLM endpoint: https://phishdestroy.io/domain/ledger-official-wallet.pro/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/ledger-official-wallet.pro/ Last updated: 2026-04-14