# sso-ladger-wallet-set.pages.dev — MALICIOUS

> sso-ladger-wallet-set.pages.dev, a crypto drainer domain, is flagged by 10 of 95 VirusTotal vendors. Check the full report.

## Summary
PhishDestroy identifies sso-ladger-wallet-set.pages.dev as an active crypto drainer domain posing elevated risks to users. This domain mimics legitimate single sign-on (SSO) or wallet services, likely targeting cryptocurrency holders through deceptive login portals or malicious payment prompts. The threat actor behind this domain is actively leveraging cloud hosting and trusted infrastructure to evade detection while harvesting credentials and digital assets from unsuspecting victims.

This domain was flagged by 10 of 95 VirusTotal security vendors, indicating significant malicious activity. It is registered through Cloudflare, Inc., resolves to IP address 172.66.44.244, and operates under a Google Trust Services SSL certificate, which may lend false legitimacy to unsuspecting users. With 10 blocklist detections and no reputable trust scores to mitigate suspicion, the risk of interaction remains notably high.

Given the domain’s active status and the use of sophisticated infrastructure, PhishDestroy recommends immediate network and endpoint blocking of sso-ladger-wallet-set.pages.dev. Users interacting with or exposed to this domain should reset cryptocurrency wallet credentials, revoke any exposed API keys, and conduct a forensic review of transaction histories. Additionally, organizations are urged to update threat intelligence feeds and SIEM configurations to include this indicator, and to warn employees or customers who may be targeted by similar campaigns disguised as SSO or wallet services.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.44.244

## Detection Status
- VirusTotal: 10 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/dd41da92-0675-4819-821e-3e7f213fb624
- PhishDestroy: https://phishdestroy.io/domain/sso-ladger-wallet-set.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/sso-ladger-wallet-set.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/sso-ladger-wallet-set.pages.dev/
Last updated: 2026-03-22