# leiged-live-learn.pages.dev — SUSPICIOUS

> PhishDestroy flags leiged-live-learn.pages.dev as a crypto drainer impersonating brand pages. Zero of 95 VirusTotal engines detect it yet.

## Summary
PhishDestroy identifies leiged-live-learn.pages.dev as an active crypto drainer domain posing as a live-learning platform. This site exploits the Cloudflare Pages ecosystem to host malicious JavaScript that silently authorizes wallet connections and siphons tokens once victims grant permissions. The drainer specifically targets crypto users expecting educational content, tricking them into connecting wallets under the guise of accessing premium material.  This domain was flagged with zero out of 95 VirusTotal detections at the time of analysis, registered through Cloudflare, Inc., resolving to IP 172.66.47.163 with a Google Trust Services SSL certificate. The risk level remains under investigation, but its behavior aligns with emerging crypto-draining campaigns leveraging trusted cloud platforms to evade detection. The absence of signatures does not equate to safety; rather, it highlights the need for proactive user caution.  If you visited leiged-live-learn.pages.dev, disconnect your wallet immediately using your wallet’s revoke feature. Do not approve any pending transactions. Clear browser cache and cookies, then run a full antivirus scan. Report the domain to your wallet provider and any exchanges tied to linked addresses. Forward the URL to PhishDestroy for further analysis and consider blocking the domain via hosts file or firewall.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.47.163

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/leiged-live-learn.pages.dev
- PhishDestroy: https://phishdestroy.io/domain/leiged-live-learn.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/leiged-live-learn.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/leiged-live-learn.pages.dev/
Last updated: 2026-04-02