# ledgerrlive-wallt.pages.dev — MALICIOUS

> ledgerrlive-wallt.pages.dev is a high-risk phishing domain impersonating Ledger. Avoid this site and protect your credentials. Stay vigilant with PhishDestroy.

## Summary
PhishDestroy identifies ledgerrlive-wallt.pages.dev as a high-risk phishing site targeting Ledger users. This site attempts to deceive visitors by mimicking Ledger's branding to steal sensitive information.

The phishing attack works by presenting a fake Ledger interface to lure users into submitting private keys or login credentials. Although currently offline, the domain was flagged by 15 security vendors and appeared on a blocklist.

If you visited ledgerrlive-wallt.pages.dev, immediately change your Ledger account passwords and monitor transactions. Use official Ledger channels only, and report suspicious domains to enhance your security.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 403)
- Target brand: Ledger
- Page title: Suspected phishing site | Cloudflare

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- Registrar: Cloudflare, Inc.
- Country: US
- IP: 172.66.47.45
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["logan.ns.cloudflare.com", "bonnie.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 15 vendors flagged
  Vendors: ["Criminal IP", "alphaMountain.ai", "BitDefender", "Chong Lua Dao", "CyRadar", "ESET", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Kaspersky", "Lionic", "Phishing Database", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/01994554-d771-7676-9e00-19012a8abac1.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/52e9fe82-bd43-4db1-8fd2-77def3219514
- PhishDestroy: https://phishdestroy.io/domain/ledgerrlive-wallt.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/ledgerrlive-wallt.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ledgerrlive-wallt.pages.dev/
Last updated: 2026-03-19