# user-ledgr-strt-com.pages.dev — SUSPICIOUS

> user-ledgr-strt-com.pages.dev is a confirmed fake Ledger wallet phishing page flagged by 1 of 95 VirusTotal vendors. Check the full report.

## Summary
PhishDestroy identifies user-ledgr-strt-com.pages.dev as an active Ledger wallet phishing domain designed to deceive users into surrendering cryptocurrency credentials. The domain mimics legitimate Ledger wallet login pages to harvest private keys and mnemonic phrases under the guise of security verification. Analysis confirms this is a targeted phishing attack impersonating a major cryptocurrency hardware wallet brand, currently operational and serving malicious content.  user-ledgr-strt-com.pages.dev was flagged by 1 of 95 VirusTotal vendors, indicating limited but confirmed malicious detection. The domain resolves to IP address 172.66.45.41 and is registered through Cloudflare, Inc. with an SSL certificate issued by Google Trust Services. While specific creation date and blocklist count data are not provided, the presence of a Google-issued certificate and Cloudflare hosting could suggest an attempt to appear legitimate to casual observers. Trust scores remain compromised due to the confirmed phishing threat.  This domain is currently active and poses an elevated risk to users attempting to access cryptocurrency-related services. Recommendations include immediate avoidance of the domain, removal of any saved credentials associated with it, and the use of network filtering tools to block access. Users who entered information should revoke exposed API keys, reset wallet passphrases, and consider transferring funds to secure wallets. Report the domain to your security team or via PhishDestroy to strengthen collective threat intelligence.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.45.41

## Detection Status
- VirusTotal: 1 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/3c5f9b70-9774-439e-ac6e-abe125aaeba6
- PhishDestroy: https://phishdestroy.io/domain/user-ledgr-strt-com.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/user-ledgr-strt-com.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/user-ledgr-strt-com.pages.dev/
Last updated: 2026-03-22