# new-ledgrr-io-en.pages.dev — SUSPICIOUS

> PhishDestroy identifies new-ledgrr-io-en.pages.dev as a crypto drainer impersonating Ledger wallets. Only 0 of 95 VirusTotal vendors flagged it yet.

## Summary
PhishDestroy flagged new-ledgrr-io-en.pages.dev as an active crypto drainer impersonating Ledger hardware wallets. The malicious site is currently online and operational, designed to steal cryptocurrency by tricking users into connecting their wallets to fraudulent transaction interfaces.

This domain was flagged by 0 of 95 VirusTotal vendors at the time of analysis, despite its active malicious infrastructure. It resolves to IP 188.114.96.3 (Cloudflare), carries a Google Trust Services SSL certificate, and operates through Cloudflare, Inc. as the registrar. No historical blocklist data or creation date was available for further assessment, indicating a recently deployed campaign using reputable hosting infrastructure to evade detection.

While VirusTotal has not yet flagged this domain, its active crypto drainer operation poses a high immediate risk to cryptocurrency users, particularly those with Ledger devices. PhishDestroy recommends avoiding any interaction with this domain or its linked pages. Users should verify wallet URLs manually, enable transaction simulation features, and consider revoking any wallet connections made through suspicious links. If compromised, immediately transfer assets to a newly initialized cold wallet and report the incident to Ledger and relevant authorities.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.96.3

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/4d54dd21-c4eb-4e6d-932c-edce0a85716d
- PhishDestroy: https://phishdestroy.io/domain/new-ledgrr-io-en.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/new-ledgrr-io-en.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/new-ledgrr-io-en.pages.dev/
Last updated: 2026-03-30