# leedgr-live-desktop-en.pages.dev — SUSPICIOUS

> leedgr-live-desktop-en.pages.dev is a crypto drainer impersonating a login portal. 0/95 VirusTotal detections suggest high evasion.

## Summary
PhishDestroy identifies leedgr-live-desktop-en.pages.dev as an active crypto drainer impersonating a legitimate login interface. The domain presents a deceptive page designed to trick users into connecting crypto wallets, triggering silent token transfers to attacker-controlled addresses. Based on seed 94eae6, this threat uses a generic phishing vector to harvest wallet credentials and session tokens, enabling unauthorized asset extraction. Immediate action is required to prevent financial loss.


This domain was flagged under seed 94eae6 with the following technical indicators: SSL certificate issued by Google Trust Services, registered via Cloudflare, Inc., resolving to IP 172.66.44.163. VirusTotal reports 0 detections out of 95 scanners as of latest scan. The domain uses a Cloudflare Pages deployment under pages.dev, a legitimate service abused for low-cost phishing hosting. Despite its infrastructure appearing benign, the behavioral intent—crypto wallet draining via fake login—establishes clear malicious intent. No current blocklist entries were detected, indicating fresh deployment and high evasion potential.


Users must avoid interacting with leedgr-live-desktop-en.pages.dev entirely. If wallet connection was attempted, revoke unauthorized permissions immediately using tools like revoke.cash or wallet-specific session killers. Report suspicious wallet approvals to blockchain security teams. Verify all login pages via official brand channels before entering credentials. Enable wallet address verification before signing any transaction and use hardware wallets for high-value assets. PhishDestroy recommends blocking the IP 172.66.44.163 and domain at DNS/network level to prevent future access.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.44.163

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/8a28ffbb-3e0e-448d-8fb7-9f867492c3e7
- PhishDestroy: https://phishdestroy.io/domain/leedgr-live-desktop-en.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/leedgr-live-desktop-en.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/leedgr-live-desktop-en.pages.dev/
Last updated: 2026-03-23