Security Scan Report: welcome-trezo-io-cdn.netlify.app

Submitted: Oct 30, 2025, 5:46:18 AMCompleted: Oct 30, 2025, 5:47:10 AMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 1 country across 1 domain to perform 2 HTTP transactions. The main domain is welcome-trezo-io-cdn.netlify.app.

Submitted URL: https://welcome-trezo-io-cdn.netlify.app/

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

Site impersonates Trezor on an unranked Netlify domain; likely phishing.

Risk Factors
Brand impersonation on an unranked, non‑official domain
Use of a newly‑created Netlify subdomain to host a Trezor‑branded page
Lack of official Trezor domain in URL despite brand claims
Domain age information unavailable

Details

Page Title

Trezor.io/start — Quick Start & Guide

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

cryptocurrency blockchain

(72%)

Domain Information

The domain 'welcome-trezo-io-cdn.netlify.app' uses the application-focused generic top-level domain (.app), featuring subdomain 'welcome-trezo-io-cdn'. Count 7 characters in 'netlify' split between two vowels and five consonants. Word splitting yields 3 words: net, li, fy. Average segment length settles at two characters. 'neto' is most common in Esperanto usage. It also appears in Bosnian and Serbian contexts. Overall, 'welcome-trezo-io-cdn.netlify.app' reads as Esperanto.

Screenshot

Security scan screenshot of https://welcome-trezo-io-cdn.netlify.app/

Page Load Overview

20.25s
Total Load Time
2
HTTP Requests
1
Domains
N/A
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:4,544 chars
Detector Agreement:75%

Website Classification

Primary Category

cryptocurrency blockchain72% confidence
Type: static
Method: ml+structural

All Detected Categories

cryptocurrency blockchain
72%
technology software
63%
blog personal website
58%
documentation technical
57%
education learning
57%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
263.176.8.218Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
035.157.26.135Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
02a05:d014:58f:6200::259Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
02a05:d014:58f:6200::258Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
24--

Detected Technologies2

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T13042C527B2E03336194380A27AD5129E7E25E457D33756443AACC25C9FC2E92CAF33C9

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:hrySPoMWQySy1ko/CIyQnYgmcb1sqVQVcv7nII3BNyxIkD5OorZqhW:hrnvyl/GcZsM778/D5X

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:12697:UKUiIcoAYAZaQhAAKiEJAA4JAQCatWVV5AAEBCLgJiMOGADgAhIMICgEFIQ0GIb0WhgggyGlNGBmQWKUAMiMpEQKAEUHFhIQ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:9f9a8292dfc7cfc7
Perceptual Hash:bc4d63928f6c34c3
Difference Hash:2a363626383c3424
Wavelet Hash:9ac28292df87cf83
Color Hash:#ae87c5

Other Hashes

Crop Resistant:2a363626383c3424

Scan History

Scan history not available

Unable to load historical scan data