# market-ledger.pages.dev — SUSPICIOUS > market-ledger.pages.dev is a confirmed crypto drainer stealing digital assets. VT shows 0/95 detections. Verify suspicious links on PhishDestroy immediately. ## Summary PhishDestroy identifies market-ledger.pages.dev as an active crypto drainer site designed to trick users into connecting cryptocurrency wallets and automatically drain funds. This malicious service masquerades as a legitimate ledger or financial platform, exploiting trust in well-known domains to steal digital assets. The threat operates by deploying deceptive wallet connection prompts that appear authentic, often mimicking recognizable brands to bypass user skepticism. Once a victim connects their wallet, the drainer initiates unauthorized transactions, transferring tokens and NFTs to attacker-controlled addresses without further user interaction. This type of attack is particularly dangerous due to its silent execution and irreversible nature, often leaving victims with no recourse after the theft occurs. This domain was flagged by PhishDestroy's automated scanner after security researchers detected its involvement in multiple cryptocurrency theft campaigns. Intelligence shows the site operates with an SSL certificate issued by Google Trust Services, providing a false sense of legitimacy to visitors. The domain resolves to IP address 188.114.96.3, which has been linked to several blockchain-related scam operations. According to VirusTotal analysis, this domain currently shows 0 detections out of 95 security engines, indicating it remains undetected by most antivirus and threat intelligence platforms. The domain was registered through Cloudflare, Inc., which is commonly used by malicious actors to hide their true location and hosting infrastructure. The registration details, combined with the lack of detection, suggest this is a newly deployed threat actively targeting cryptocurrency users. If you visited market-ledger.pages.dev or entered wallet credentials, immediately disconnect your wallet from the site and revoke any unauthorized connections through your wallet's security settings. Check your transaction history for any suspicious outgoing transfers, especially those occurring shortly after your visit. Use blockchain explorers to verify the destination addresses of recent transactions. Consider transferring remaining funds to a newly created wallet with a different seed phrase for enhanced security. Report the incident to PhishDestroy using the unique seed 375cbc to help track and block this threat across other platforms. Stay vigilant against similar crypto drainer domains by always verifying suspicious links through trusted security services before interacting with any web3 interface. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 188.114.96.3 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/f820cc9f-9fa2-48e7-a0ff-c87cd003ca2a - PhishDestroy: https://phishdestroy.io/domain/market-ledger.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/market-ledger.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/market-ledger.pages.dev/ Last updated: 2026-03-22