ScanMalware.com

Security Scan Report: esktosp-ledger.gitbook.io

Site favicon
Submitted: Nov 15, 2025, 7:15:35 AMCompleted: Nov 15, 2025, 7:16:39 AMpubliccompleted
Loading additional data...

Summary

This website contacted 12 IPs in 0 countries across 4 domains to perform 45 HTTP transactions. The main domain is esktosp-ledger.gitbook.io.

Submitted URL: https://esktosp-ledger.gitbook.io/us/

AI Security Verdict

High Risk

Confidence: 78%

7
Risk Score

Impersonates Ledger on an unranked GitBook subdomain – likely phishing.

Risk Factors
Brand impersonation/typosquatting (Ledger) on an unusual, unranked domain
Unranked domain presenting a well‑known brand
Mismatch between displayed brand and actual hosting domain
Domain age information unavailable

Details

Primary Scan Blocked — Fallback Capture Shown

The primary scanner could not load this page (possible bot protection). The screenshot and page details shown were captured by a fallback browser that loaded the page successfully.

Page Title

Ledger Live Desktop - Hardware Wallet & Cold Wallet | us

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

cryptocurrency blockchain

(88%)

Domain Information

The domain 'esktosp-ledger.gitbook.io' uses the British Indian Ocean Territory country-code top-level domain (.io), featuring subdomain 'esktosp-ledger'. Its registrable label 'gitbook' stretches across 7 characters containing three vowels alongside four consonants. Breaking it apart gives three words: g, it, book. Average segment length settles at two characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://esktosp-ledger.gitbook.io/us/

Page Load Overview

26.02s
Total Load Time
45
HTTP Requests
4
Domains
152 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:3,130 chars
Detector Agreement:50%

Website Classification

Primary Category

cryptocurrency blockchain88% confidence
Type: spa
Method: ml+structural

All Detected Categories

cryptocurrency blockchain
88%
technology software
86%
finance banking
55%
government public service
46%
cryptocurrency
30%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
12104.18.40.47UnknownUnknown
3104.18.40.68UnknownUnknown
3172.64.147.188UnknownUnknown
3104.18.41.89UnknownUnknown
3172.64.147.209UnknownUnknown
3172.64.146.167UnknownUnknown
32606:4700:4407::6812:282fUnknownUnknown
32a06:98c1:310d::ac40:92a7UnknownUnknown
32606:4700:4408::6812:2844UnknownUnknown
32606:4700:4402::ac40:93d1UnknownUnknown
4512--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T18CE3E81A2000F7495DB7DE54633EBE3E809ED667C778C8EDF24DC9A6178453B0BA2990

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:MP3gEIUlqvV3xF/MTTcE7cEsN2vcROQFbyidqGBNFC9jgNt/:UIUZja

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:143886:cLpAhSQYrF8yQpBCTQiIBTAIGDAQSjggMgpKBIIKmjAPnkhuEQCQijiC2AKDQgkL7EiTogygDOA2gkIBMFrdbMUkhZoRACdQ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:c7c3ffcfcfc3c3c3
Perceptual Hash:b19c262493cecece
Difference Hash:5d1e241818161e1e
Wavelet Hash:0083dfcfc7c3c383
Color Hash:#3a7868

Other Hashes

Crop Resistant:5d1e241818161e1e

Scan History

Scan history not available

Unable to load historical scan data