SafeMode - Analysis: coinmarketcaa.com

Visual Capture

Detection Info

https://coinmarketcaa.com/

Detected Brand

Ledger

Country

Unknown

Confidence

100%

HTTP Status

200

Report ID

68106380-65c…

Analyzed

2026-05-31 22:12

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm	Hash Value
CONTENT TLSH	T13A12856037402A3D0857828475A0F67D935CFAD8D97A8010E2FD826E66E3F93ED739D9
CONTENT ssdeep	192:QTGvEkZcVU6L2nefwR7stW9R7sYR7sz3i6+6FG:5ZI/L2eIR7sQ9R7sYR7sW6FG

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm	Hash Value
VISUAL pHash	817b64d96666d964
VISUAL aHash	403b2d2d3d3d3f28
VISUAL dHash	ccd2d8d8d8dac0d0
VISUAL wHash	403e3e3e3e3e3e00
VISUAL colorHash	38006200000
VISUAL cropResistant	ccd2d8d8d8dac0d0

Code Analysis

Risk Score 80/100

Threat Level ALTO

⚠️ Phishing Confirmed

🎣 Card Stealer

📊 Risk Score Breakdown

Total Risk Score

80/100

Contributing Factors

Active Phishing Kit

Detected kit types: Card Stealer

🔬 Comprehensive Threat Analysis

Threat Type

Banking Credential Harvester

Target

Ledger users

Attack Method

Phishing webpage

Exfiltration Channel

Form submission (backend endpoint not detected - likely JavaScript-based)

Risk Assessment

CRITICAL - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)

⚠️ Indicators of Compromise

Kit types: Card Stealer

🏢 Brand Impersonation Analysis

Impersonated Brand

Ledger

Official Website

N/A

Fake Service

Banking/payment service

⚔️ Attack Methodology

Primary Method: Payment Card Theft

Victim enters credit/debit card details including CVV and expiration. Card data is captured and can be used for fraudulent transactions or sold on dark web markets.

Secondary Method: Standard Phishing Techniques

Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.