# ledgercomstart.vercel.app — MALICIOUS

> Discover why ledgercomstart.vercel.app is flagged as a high-risk phishing site impersonating Ledger. Stay informed and protect your crypto assets.

## Summary
PhishDestroy identifies ledgercomstart.vercel.app as a high-risk phishing domain targeting Ledger users by mimicking the official wallet onboarding page. The site aims to deceive visitors into compromising their cryptocurrency security.

The domain was created recently on March 6, 2026, registered via Vercel Inc., and resolved to IP 216.198.79.67. It appears on one security blocklist and has been flagged by 18 out of 95 VirusTotal security vendors, underscoring its malicious intent.

Currently, the domain is offline, reducing immediate risk. Users are advised to avoid interacting with suspicious Ledger-related sites and only use official Ledger platforms. Continuous monitoring is recommended to prevent further impersonation attempts linked to this seed 6ff752.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP ?)
- Target brand: Ledger
- Page title: Ledger.com/Start — Get Started with Ledger Wallet

## Domain Intelligence
- Registered: 2026-03-06 13:07:01
- Registrar: Vercel Inc.
- Country: US
- IP: 216.198.79.67
- IP Country: US
- IP City: Walnut
- IP Org: AS16509 Amazon.com, Inc.
- Nameservers: NS_NOT_FOUND
- SSL Issuer: Google Trust Services / WR1

## Detection Status
- VirusTotal: 18 vendors flagged
  Vendors: ["ADMINUSLabs", "Criminal IP", "alphaMountain.ai", "BitDefender", "CyRadar", "Ermes", "Emsisoft", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Gridinsoft", "Kaspersky", "Lionic", "Netcraft", "Sophos", "Trustwave", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cc31a-94b6-76a8-ae2a-6efba533e298.png
- Cloudflare Radar: https://radar.cloudflare.com/domains/ledgercomstart.vercel.app
- Wayback Machine: https://web.archive.org/web/https://ledgercomstart.vercel.app
- PhishDestroy: https://phishdestroy.io/domain/ledgercomstart.vercel.app/
- LLM endpoint: https://phishdestroy.io/domain/ledgercomstart.vercel.app/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ledgercomstart.vercel.app/
Last updated: 2026-03-19