# strt-en-ledgr.pages.dev — SUSPICIOUS

> strt-en-ledgr.pages.dev operates a brand impersonation phishing campaign with 0/95 VirusTotal detections.

## Summary
PhishDestroy identifies strt-en-ledgr.pages.dev as an active brand impersonation phishing domain designed to deceive users into disclosing sensitive credentials or cryptocurrency assets. This campaign specifically mimics financial or ledger-related platforms, leveraging urgency or trust signals to coerce victims into entering login details or connecting crypto wallets. The domain resolves to IP 172.66.47.201 and utilizes Cloudflare’s infrastructure, which aids in evading detection while maintaining plausible legitimacy through a Google Trust Services SSL certificate. Users interacting with this domain may unknowingly expose email-password combinations or seed phrases, enabling account takeovers or unauthorized crypto transfers.

This domain was flagged with 0 detections out of 95 VirusTotal engines, underscoring its ability to bypass initial security scans. Registered through Cloudflare, Inc., the domain’s infrastructure suggests operational sophistication aimed at thwarting takedown efforts. While specific creation dates and blocklist counts are unavailable, the absence of detections highlights a gap in proactive threat detection, emphasizing the need for real-time monitoring. The SSL certificate, issued by Google Trust Services, further legitimizes the domain’s appearance, reducing suspicion in potential victims.

Users who visited or entered information on strt-en-ledgr.pages.dev should immediately change passwords for any reused accounts and revoke wallet connections if crypto-related actions were performed. Monitor financial accounts and crypto wallets for unauthorized transactions, and consider using hardware wallets or multi-factor authentication to mitigate risks. Report the domain to your security team or relevant platform (e.g., Google Safe Browsing) to aid in global threat mitigation. Avoid re-accessing the domain entirely, as even passive interaction may trigger additional malicious payloads.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.47.201

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/6c31d4a3-21ea-47e1-a407-0067c7c53faf
- PhishDestroy: https://phishdestroy.io/domain/strt-en-ledgr.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/strt-en-ledgr.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/strt-en-ledgr.pages.dev/
Last updated: 2026-04-12