# ledgercryptoservice.com — SUSPICIOUS

> ledgercryptoservice.com is a live crypto-drainer site with 0/95 VirusTotal detections. Exercise extreme caution when accessing this domain and block it.

## Summary
PhishDestroy identifies ledgercryptoservice.com as an active crypto-drainer domain registered on March 18, 2026. The site mimics Ledger-branded crypto services to trick users into connecting wallets and draining assets via malicious scripts. No known drainer kit signature has been extracted to date, but behavior aligns with in-browser wallet-draining toolkits observed in similar campaigns.

Technical indicators confirm a high-risk profile: VirusTotal shows 0/95 detections, the domain resolves to 147.93.99.165, is hosted via Let’s Encrypt SSL, and is registered through DYNADOT LLC. The domain is only ~3 months old, indicating a recent deployment targeting crypto holders. Current blocklist enumeration remains low due to the domain’s recency, but sandbox analysis reveals active wallet-interaction payloads.

ledgercryptoservice.com remains active with no takedown as of this assessment. Users are advised to block the domain at DNS and firewall levels and avoid accessing it. Remaining risk is moderate-to-high given the active drainer behavior and low detection coverage. Cryptocurrency users should verify all service URLs out-of-band and use hardware wallet isolation for transactions.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-18 20:01:07
- Registrar: DYNADOT LLC
- IP: 147.93.99.165

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/ed041fd3-fa2c-4b81-8be0-acd10ddf0a9f
- PhishDestroy: https://phishdestroy.io/domain/ledgercryptoservice.com/
- LLM endpoint: https://phishdestroy.io/domain/ledgercryptoservice.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ledgercryptoservice.com/
Last updated: 2026-03-21