https://shop-ledger.at
172.67.142.44 · Cloudflare, Inc.
Toronto, Canada
—
200 · 14.0s
Valid· WE1, Google Trust Services, US
COMPLETED
Linked Phishing Report
This scan is attached to a vendor submission report
Brand
VaultKey / VaultKey
Vendors
30/31
Status
partial
No KB/IOK detections were recorded for this scan.
technology | finance · 7/19/2026
The page displays VaultKey branding with a Ledger-related domain name (shop-ledger) suggesting impersonation signals. The page title and content reference VaultKey hardware wallet, while the domain name contains 'ledger', a known brand, raising impersonation concerns. However, there is no concrete evidence of credential collection or malware delivery in the static HTML; the SPA behavior and dynamic scripts mean credentials could be captured in runtime. SSL is valid and the page serves content, but the domain intelligence indicates potential brand impersonation rather than a first-party VaultKey site.
Capture
Stages: 2
Canonical: Settled Render
Changed: No
Credential Signals
Forms: 0
Password fields: 0
Late-stage login UI: No
Resource Signals
Resources: 7
Hosts: 4
Domains: 4
No suspicious indicators identified
The scan indicates potential brand impersonation due to the domain name containing Ledger while displaying VaultKey branding, which is a strong signal for impersonation/phishing risk. There is no direct evidence of credential collection in the static HTML; however, the SPA rendering means forms could be injected at runtime via JavaScript. Given the branding mismatch and presence on a presumably separate domain, this warrants cautious handling and further provenance checks. The page appears to be accessible and legitimate-looking but not conclusively first-party VaultKey content.
Monitor