# mustlogledd.pages.dev — SUSPICIOUS > Security alert: mustlogledd.pages.dev impersonates a crypto wallet login page to steal assets. Flagged by 0 of 95 VirusTotal scanners. ## Summary PhishDestroy identifies mustlogledd.pages.dev as a live crypto drainer phishing domain currently under active investigation. This page impersonates a legitimate crypto wallet login interface to trick users into connecting fraudulent wallets and draining digital assets. The domain is hosted on Cloudflare Pages, resolves to IP 188.114.96.3, and uses a Google Trust Services SSL certificate to appear authentic. The exact registration path and hosting infrastructure are leveraged to evade early detection despite zero VirusTotal detections at this time. This domain was flagged by 0 of 95 VirusTotal scanning vendors and is registered through Cloudflare, Inc. Its underlying IP address 188.114.96.3 hosts multiple suspicious pages, and the domain was recently provisioned via Cloudflare Pages with fast-flux hosting characteristics. Trust scores from threat intelligence platforms remain low, with no major blocklists currently including it due to its novelty, though behavioral analysis indicates a clear drainer payload delivery pattern aligned with known crypto scam campaigns. Security teams and users are advised to avoid accessing mustlogledd.pages.dev and to block both the domain and IP 188.114.96.3 at the network perimeter. Verify any crypto login pages using PhishDestroy’s real-time domain scanner before entering credentials or connecting wallets. Continue monitoring this domain as it evolves; its low detection rate suggests active evasion tactics. Users who have already interacted with this site should revoke any connected wallet permissions, transfer remaining assets to a clean wallet, and run a malware scan on affected devices. Exercise extreme caution with domains hosted on pages.dev or resolving to Cloudflare IP ranges associated with crypto services. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: Cloudflare, Inc. - IP: 188.114.96.3 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/mustlogledd.pages.dev - PhishDestroy: https://phishdestroy.io/domain/mustlogledd.pages.dev/ - LLM endpoint: https://phishdestroy.io/domain/mustlogledd.pages.dev/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/mustlogledd.pages.dev/ Last updated: 2026-04-06