Security Scan Report: ledgerlive.co.com

Redirected to:
https://ledgerlive.co.com/
Site favicon
Submitted: Nov 22, 2025, 12:30:38 PMCompleted: Nov 22, 2025, 12:31:37 PMpubliccompleted
Loading additional data...

Summary

This website contacted 9 IPs in 3 countries across 3 domains to perform 14 HTTP transactions. The main domain is ledgerlive.co.com.

Submitted URL: http://ledgerlive.co.com/

Effective URL: https://ledgerlive.co.com/Redirected

AI Security Verdict

High Risk

Confidence: 88%

8
Risk Score

High‑risk phishing site impersonating Ledger Live; do not provide any information.

Risk Factors
Brand impersonation of Ledger Live on a non‑official, unranked domain
Likely newly registered domain with no reputation
Use of a subdomain (ledgerlive.co.com) that mimics the official brand
Domain age information unavailable

Details

Page Title

Ledger Live - Secure Crypto Wallet App & DeFi Gateway for 15,000+ Digital Assets

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(37%)

Domain Information

Domain 'ledgerlive.co.com' uses the commercial generic top-level domain (.com) with subdomain 'ledgerlive'. Its registrable label 'co' stretches across 2 characters with 1 vowel and 1 consonant. Segmentation suggests 1 word: co. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://ledgerlive.co.com/

Page Load Overview

1.28s
Total Load Time
14
HTTP Requests
3
Domains
421 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:6,570 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software37% confidence
Type: static
Method: ml+structural

All Detected Categories

technology software
37%
corporate
35%
cryptocurrency
30%
cryptocurrency blockchain
28%

Detected Features

OG: website
Schema.org

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
10185.185.71.63Russia
AS35278Sprinthost.ru LLC
1142.250.185.234United States
AS15169GOOGLE
1104.26.3.143United States
AS13335CLOUDFLARENET
1172.67.68.11United States
AS13335CLOUDFLARENET
1104.26.2.143United States
AS13335CLOUDFLARENET
12606:4700:20::681a:28fUnited States
AS13335CLOUDFLARENET
12606:4700:20::ac43:440bUnited States
AS13335CLOUDFLARENET
12a00:1450:4001:812::200aFrankfurt am Main, Hesse, Germany
AS15169GOOGLE
12606:4700:20::681a:38fUnited States
AS13335CLOUDFLARENET
149--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1D363F83A61F0007A259782F2F6B23B297F35D487D91BC989B2AD46495FC3CE68C53748

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:Kn1LqxyfhL7xrfvcxzR9mzIpzybqmal1mVYQ2tywRnOjbCl46VthJpe61C3RkSSE:Kn2yhnxrWR9aIRVmal1S8f7PZIj

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:71983:hIChGJQ5OgGSEGQVVEUFMAgaUgHBAASQECYLM8oAXAOGqwIQVaKMRUxBFYTCpUW4ERnAGAkBISsJSFEEdXQCoLHIOiiKAmCU

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:dec7c3c3ffffffe7
Perceptual Hash:b038c3cfc78cc3c3
Difference Hash:101416160000000c
Wavelet Hash:fac2cec232323a02
Color Hash:#8e53ac

Other Hashes

Crop Resistant:101416160000000c

Scan History

Scan history not available

Unable to load historical scan data