ScanMalware.com

Security Scan Report: startup-desktop.wixstudio.com

Submitted: May 1, 2026, 3:26:50 AMCompleted: May 1, 2026, 3:28:06 AMpubliccompleted
Loading additional data...

Summary

This website contacted 7 IPs in 1 country across 9 domains to perform 36 HTTP transactions. The main domain is startup-desktop.wixstudio.com and was registered NaN years ago.

Submitted URL: https://startup-desktop.wixstudio.com/login

AI Security Verdict

Moderate Risk

Confidence: 92%

5
Risk Score

The site impersonates Ledger with cloned meta tags on an unranked, unrelated domain, posing a high‑risk brand phishing threat.

Risk Factors
Brand impersonation (Ledger) on unrelated domain
Unranked domain in Cisco Umbrella
Suspicious JavaScript (eval, Function constructor)
Meta tag cloning of official brand
Safety Factors
Domain age >9 years (well‑established)
No credential or payment forms detected
No malware YARA matches
No network IDS alerts
Low JavaScript obfuscation score
Established domain (3421 days old) with no strong malicious indicators — risk clamped from 7 to 5
Domain age information unavailable

Details

Page Title

Ledger® Live: Desktop® — Getting Started | official Ledger™

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

documentation technical

(42%)

Domain Information

Within the commercial generic top-level domain (.com), 'startup-desktop.wixstudio.com' is registered with subdomain 'startup-desktop'. Count 9 characters in 'wixstudio' containing 4 vowels alongside 5 consonants. Tokenizing the label suggests three words: wi, x, studio. The median word length lands at 2 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://startup-desktop.wixstudio.com/login

Page Load Overview

1.32s
Total Load Time
81
HTTP Requests
8
Domains
599 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:100 chars
Detector Agreement:100%

Website Classification

Primary Category

documentation technical42% confidence
Type: spa
Method: ml+structural

All Detected Categories

documentation technical
42%
corporate
25%

Detected Features

OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1534.49.229.81Kansas City, Missouri, United States
AS396982Google LLC
1134.149.206.255Kansas City, Missouri, United States
AS396982Google LLC
113.226.19.232Ashburn, Virginia, United States
AS14618Amazon.com, Inc.
1165.8.131.77United States
AS16509Amazon.com, Inc.
1134.144.206.118Kansas City, Missouri, United States
AS396982Google LLC
1134.160.37.117Kansas City, Missouri, United States
AS396982Google LLC
11151.101.194.217United States
AS54113Fastly, Inc.
817--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T137748EB4A701F13A4D2331AF5389BB0C513D90515D524B2EFAEC926419D7FEA12E3B3A

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:ldz66TQ8IIxlNTFHuZuHuKtVcosWtVcosCUbDFTqYtsbebmlTK4weiwi+n4fS7S0:ldz6P8IYlGl2II+4we54gcEv

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:339641:MDsOVwrAWEsGIIcKEnNYLhggSBIiIYgEHWUwYAE+WDAMQYQ/JCQBsskXAQBsNpAhUSJiMioBCWNeFK4REDHSCEwODSTnFFwx

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:f3818d8d81818181
Perceptual Hash:bb9165ecd594c4c4
Difference Hash:23595d5d59415149
Wavelet Hash:ff8d8f8f8d818181
Color Hash:#74d22d

Other Hashes

Crop Resistant:23595d5d59415149,343038383cbc9889,fef9f1e1f1f3e4e1,23d8dad8d8c099c9

Scan History

Scan history not available

Unable to load historical scan data