# live-ladger-desktopes.pages.dev — SUSPICIOUS

> live-ladger-desktopes.pages.dev impersonates Ledger Live wallet with a 0/95 VirusTotal score. Verify before downloading wallet software. Check the full report.

## Summary
PhishDestroy identifies live-ladder-desktopes.pages.dev as an active Ledger Live wallet phishing domain distributing a browser-based cryptocurrency drainer kit designed to harvest seed phrases and private keys. The domain mimics the official Ledger Live desktop application interface, tricking users into entering wallet credentials under the guise of a software update or security patch. Security scanners have not yet flagged this campaign, suggesting rapid deployment and low detection latency.


Exact technical indicators include a VirusTotal detection score of 0 out of 95 antivirus engines as of the latest scan, registered through Cloudflare, Inc., resolving to IP address 188.114.97.3, secured with a Google Trust Services SSL certificate, and currently carrying a Google Safe Browsing (GSB) status of under investigation. The domain is part of a known seed family c51ff9, which has been linked to recent cryptocurrency wallet drainer campaigns targeting Ledger and Trezor users. The site appears to have been created recently and remains active, with no confirmed blocklist entries at this time.


This domain is currently active and classified as under investigation by threat intelligence platforms. PhishDestroy recommends immediate blocking of the IP address 188.114.97.3 at the network perimeter and updating endpoint detection rules to flag any connection attempts to live-ladger-desktopes.pages.dev. Users are advised to verify download sources through official Ledger channels only and enable hardware wallet verification for all transactions. The remaining risk is evaluated as high due to active distribution, lack of antivirus detection, and potential compromise of wallet credentials if accessed.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.97.3

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/live-ladger-desktopes.pages.dev
- PhishDestroy: https://phishdestroy.io/domain/live-ladger-desktopes.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/live-ladger-desktopes.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/live-ladger-desktopes.pages.dev/
Last updated: 2026-04-08