# live-us-ledgers.pages.dev — MALICIOUS

> live-us-ledgers.pages.dev is a crypto drainer scam flagged by 18/95 VirusTotal vendors. Avoid interacting with this site to prevent asset theft.

## Summary
PhishDestroy identifies live-us-ledgers.pages.dev as an active crypto drainer posing as a legitimate ledger service. This domain tricks users into connecting cryptocurrency wallets under the guise of transaction verification, where malware silently drains funds to attacker-controlled addresses. The threat is elevated due to its active deployment and sophisticated impersonation tactics targeting crypto users seeking secure ledger services.  This domain was flagged by 18 out of 95 VirusTotal security vendors, registered via Cloudflare with a Google Trust Services SSL certificate, and resolves to IP 172.66.44.237. Such configurations are common in malicious infrastructures to obscure true ownership while maintaining a veneer of legitimacy. The high VT detection rate indicates broad recognition of its malicious nature, though attackers frequently cycle domains to evade blocklists.  Users who visited live-us-ledgers.pages.dev should immediately disconnect any connected wallets, revoke unauthorized token approvals using tools like Etherscan or Revoke.cash, and scan devices for malware using reputable antivirus software. Never re-engage with this domain or similar ledger impersonations. Report the site to your wallet provider and relevant cybercrime units to aid in takedown efforts.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.44.237

## Detection Status
- VirusTotal: 18 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/a2b492cc-545a-44f9-b3e7-355e047f2771
- PhishDestroy: https://phishdestroy.io/domain/live-us-ledgers.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/live-us-ledgers.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/live-us-ledgers.pages.dev/
Last updated: 2026-03-21