ScanMalware.com

Security Scan Report: liddoofinanc.gitbook.io

Submitted: Nov 24, 2025, 7:07:25 PMCompleted: Nov 24, 2025, 7:10:58 PMpubliccompleted
Loading additional data...

Summary

This website contacted 12 IPs in 1 country across 4 domains to perform 47 HTTP transactions. The main domain is liddoofinanc.gitbook.io.

Submitted URL: https://liddoofinanc.gitbook.io/us/

AI Security Verdict

High Risk

Confidence: 80%

7
Risk Score

Site impersonates Lido Finance on an untrusted domain, high risk of phishing.

Risk Factors
Mimicking a known brand on an unusual, unranked domain
Potential typo‑squatted subdomain (liddoofinanc) suggesting deceptive intent
Domain age information unavailable

Details

Primary Scan Blocked — Fallback Capture Shown

The primary scanner could not load this page (possible bot protection). The screenshot and page details shown were captured by a fallback browser that loaded the page successfully.

Page Title

Lido Finance | - The | decentralized finance

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

cryptocurrency blockchain

(40%)

Domain Information

The domain name 'liddoofinanc.gitbook.io' uses the British Indian Ocean Territory country-code top-level domain (.io), featuring subdomain 'liddoofinanc'. The second-level label 'gitbook' is 7 characters long holding 3 vowels versus four consonants. Tokenizing the label suggests 3 words: g, it, book. Expect 2 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://liddoofinanc.gitbook.io/us/

Page Load Overview

1.75s
Total Load Time
47
HTTP Requests
4
Domains
901 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:317 chars
Detector Agreement:75%

Website Classification

Primary Category

cryptocurrency blockchain40% confidence
Type: spa
Method: ml+structural

All Detected Categories

cryptocurrency blockchain
40%
cryptocurrency
22%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
34104.18.41.89United States
AS13335CLOUDFLARENET
14172.64.146.167United States
AS13335CLOUDFLARENET
9104.18.40.47United States
AS13335CLOUDFLARENET
3172.64.147.188United States
AS13335CLOUDFLARENET
3104.18.40.68United States
AS13335CLOUDFLARENET
3172.64.147.209United States
AS13335CLOUDFLARENET
32a06:98c1:310d::ac40:92a7United States
AS13335CLOUDFLARENET
32606:4700:4407::6812:282fUnited States
AS13335CLOUDFLARENET
32606:4700:4404::6812:2959United States
AS13335CLOUDFLARENET
32606:4700:4408::6812:2844United States
AS13335CLOUDFLARENET
4712--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T144C3D71A6100F6095EB2EE11633ABE3980DED677D774D4BDF30DD9AA178813B07A2990

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:GfyxLAyWvvt/dVP+O8Hy/EnEexbXBh+q3nRvIOuP1lJcElzUFfzwBGVPCcAjjRTS:p3grlfo43x4/EE

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:119978:2ilnhAbAMQJoik52txEwgQAgyg1gAOhSCwJnQBmEajBAB5SgRErRBGCIvMCM1Ag4eE1AYSEgVDBbzkgJgGMW0BSZzXwj4EIQ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffc3c3c3c3ffffff
Perceptual Hash:b131ce8e1b936764
Difference Hash:599e9e9e9e0a0040
Wavelet Hash:00c3c0c0c3c3ff1f
Color Hash:#3c783a

Other Hashes

Crop Resistant:599e9e9e9e0a0040

Scan History

Scan history not available

Unable to load historical scan data