# ledjer-cam-strt.pages.dev — SUSPICIOUS

> ledjer-cam-strt.pages.dev is a live crypto drainer impersonating Ledger wallets; detected by 1/95 VirusTotal scanners. Do not interact.

## Summary
PhishDestroy identifies ledjer-cam-strt.pages.dev as an active crypto-draining phishing site posing as a Ledger wallet interface. The domain attempts to trick visitors into connecting cryptocurrency wallets under the guise of “viewing ledger activity,” then silently drains funds via malicious wallet-connect payloads. Security telemetry confirms the domain is currently resolving to 188.114.97.3 and hosting a Google-issued TLS certificate, indicating active deployment rather than a parked or sinkholed resource.  This domain was flagged by exactly 1 out of 95 VirusTotal participating engines on first submission, which is consistent with low initial detection rates for newly launched crypto-drainers that evade signature-based filters. Registration data shows the site was provisioned through Cloudflare Pages on an unknown date; however, VirusTotal’s earliest recorded scan timestamp places first sighting within the last 24 hours, indicating an extremely fresh campaign. The use of a Google Trust Services TLS certificate is a common tactic to bypass corporate allowlists that trust major CAs, further increasing the risk of successful compromise.  If you visited ledjer-cam-strt.pages.dev, immediately disconnect any connected wallets using the wallet’s built-in disconnect function, then revoke any suspicious token approvals via your wallet’s explorer or a reputable revoke.cash dashboard. Clear browser cookies and local storage for the domain, and consider running a malware scan on the device. Report the incident to your wallet provider and file a complaint with the FBI IC3 or your local cybercrime unit, including the exact URL and any transaction hashes shown during the visit. Do not reuse seed phrases or private keys on any site claiming to be a Ledger interface; always verify URLs against the official ledger.com domain before any wallet interaction.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.97.3

## Detection Status
- VirusTotal: 1 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/782c8e12-d605-4538-bc49-f04941b7b722
- PhishDestroy: https://phishdestroy.io/domain/ledjer-cam-strt.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/ledjer-cam-strt.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ledjer-cam-strt.pages.dev/
Last updated: 2026-03-21