# leedger-livee-cloud.pages.dev — SUSPICIOUS

> Domain leedger-livee-cloud.pages.dev hosts a Ledger Live phishing page. Only 0 out of 95 VirusTotal engines flagged it. Check the full report.

## Summary
PhishDestroy identifies a recently active phishing domain, leedger-livee-cloud.pages.dev, impersonating the legitimate Ledger Live cryptocurrency wallet interface. This fraudulent site attempts to trick users into entering their recovery phrases or private keys by mimicking the familiar login flow of the official Ledger application. Victims who input their credentials risk immediate theft of digital assets and potential compromise of associated accounts, making this a high-stakes threat in the crypto space.

This domain was flagged through automated monitoring and analysis. It resolves to IP address 172.66.47.50 and leverages a Google Trust Services SSL certificate to appear legitimate. Crucially, VirusTotal currently shows zero detections out of 95 scanning engines, indicating this threat has evaded broad signature-based detection systems. The page is hosted on Cloudflare Pages, a service often abused by threat actors for rapid deployment and evasion of takedown efforts. The infrastructure choices and lack of detections suggest this campaign is either newly launched or employing advanced obfuscation techniques.

If you have visited leedger-livee-cloud.pages.dev, cease all interaction immediately and take the following steps: Disconnect any affected devices from the internet to prevent further data exfiltration. Revoke any credentials entered on the site, including recovery phrases, wallet passwords, and associated email accounts. Scan your device for malware using reputable antivirus software, as phishing sites often deploy info-stealing trojans. Monitor your cryptocurrency wallets and financial accounts for unauthorized transactions. Report the domain to your wallet provider and consider filing an incident report with relevant cybercrime units. Always access Ledger services through the official ledger.com domain or verified application stores to avoid similar threats in the future.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.47.50

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/bf957da4-d0cb-4383-a80a-f55156bf30c3
- PhishDestroy: https://phishdestroy.io/domain/leedger-livee-cloud.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/leedger-livee-cloud.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/leedger-livee-cloud.pages.dev/
Last updated: 2026-04-13