# ledger-wallet--app-us.pages.dev — MALICIOUS > ledger-wallet--app-us.pages.dev is a Ledger brand impersonation site hosting a cryptocurrency drainer kit. Flagged by 9/95 VirusTotal scanners. ## Summary PhishDestroy identifies ledger-wallet--app-us.pages.dev as an active brand impersonation domain targeting Ledger cryptocurrency wallet users. The domain leverages a drainer kit designed to steal digital assets under the guise of a legitimate wallet application. Through deceptive visual cues and phishing lures, threat actors trick victims into connecting their wallets or entering private keys, facilitating unauthorized fund transfers. ledger-wallet--app-us.pages.dev was registered via Cloudflare, Inc. and resolves to IP address 188.114.97.3. VirusTotal analysis confirms a detection score of 9/95 security vendors, with the domain flagged by Google Safe Browsing (GSB). The site holds a valid SSL certificate issued by Google Trust Services. This domain was created recently and has already appeared on multiple blocklists, indicating rapid propagation across security platforms. As of current assessment, ledger-wallet--app-us.pages.dev remains active and poses an elevated risk to users seeking Ledger wallet services. Users should immediately block the domain and IP 188.114.97.3 using network or endpoint controls. Never access wallet-related sites via third-party links; always verify URLs through official channels. Remaining risk is high due to ongoing accessibility and active use in cryptocurrency scams. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) - Target brand: Ledger ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 188.114.97.3 ## Detection Status - VirusTotal: 9 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/5b534e9a-c00f-42d8-b76e-2c9cdbe7f563 - PhishDestroy: https://phishdestroy.io/domain/ledger-wallet--app-us.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/ledger-wallet--app-us.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/ledger-wallet--app-us.pages.dev/ Last updated: 2026-03-26