ScanMalware.com

Security Scan Report: replay.dropbox.com

Site favicon
Submitted: Nov 5, 2025, 2:27:14 AMCompleted: Nov 5, 2025, 2:30:04 AMpubliccompleted
Loading additional data...

Summary

This website contacted 29 IPs in 2 countries across 8 domains to perform 111 HTTP transactions. The main domain is replay.dropbox.com and was registered NaN years ago.

Submitted URL: https://replay.dropbox.com/share/fGmMDLwyzDTGxPY8?_tk=dropbox_email_6017&video_version_id=pid_rvv%3AAAAAAHBPJ7AP2G3aNm_VcKLRwrRatb0EuDsTEz8RMKfFenwg

AI Security Verdict

High Risk

Confidence: 85%

7
Risk Score

High‑risk phishing page impersonating PayPal; do not trust.

Risk Factors
Brand impersonation (PayPal) on an unrelated domain
Social engineering: threat of unauthorized cryptocurrency transaction
Request to contact a phone number for cancellation
Domain age information unavailable

Details

Page Title

406 BTC order has been Placed From your account on November 04, 2025 If you want to cancel this request please Contact +1 (805) 215-0289 - Replay

Scan Type

public

Language

🇺🇸

English

(50% confidence)

Category

cryptocurrency blockchain

(74%)

Domain Information

You're looking at domain 'replay.dropbox.com' on the commercial generic top-level domain (.com); it also runs on subdomain 'replay'. Count 7 characters in 'dropbox' containing two vowels alongside five consonants. Splitting it apart reveals 2 words: drop, box. Median word length comes out to 3.5 characters. 'drop' is most common in English usage. You will also see it in Chinese (Pinyin) and Danish contexts.

Screenshot

Security scan screenshot of https://replay.dropbox.com/share/fGmMDLwyzDTGxPY8?_tk=dropbox_email_6017&video_version_id=pid_rvv%3AAAAAAHBPJ7AP2G3aNm_VcKLRwrRatb0EuDsTEz8RMKfFenwg

Page Load Overview

6.53s
Total Load Time
111
HTTP Requests
8
Domains
294 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:50%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:50%
Script Type:Latin
HTML Lang Attribute:en
Text Length:461 chars
Detector Agreement:100%

Website Classification

Primary Category

cryptocurrency blockchain74% confidence
Type: static
Method: ml+structural

All Detected Categories

cryptocurrency blockchain
74%
technology software
68%
documentation technical
50%
government public service
31%
finance banking
31%

Detected Features

Comments
OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
45104.16.100.29United States
AS13335CLOUDFLARENET
2618.245.46.16United States
AS16509AMAZON-02
12162.125.66.18Frankfurt am Main, Hesse, Germany
AS19679DROPBOX
10162.125.66.19Frankfurt am Main, Hesse, Germany
AS19679DROPBOX
654.148.174.217Boardman, Oregon, United States
AS16509AMAZON-02
4162.125.6.20United States
AS19679DROPBOX
318.245.46.91United States
AS16509AMAZON-02
352.11.186.51Boardman, Oregon, United States
AS16509AMAZON-02
318.245.46.13United States
AS16509AMAZON-02
3104.16.99.29United States
AS13335CLOUDFLARENET
11129--

Detected Technologies4

Open-Graph-Protocolvwebsite
100%
Amazon Web Services
50%
Amazon S3
40%
Amazon CloudFront
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T15703F879C470B55A072726E6F1BD7B09E126604FDA05FC817ABFB7803BC0EA4D96250D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:5Q1Dx0TS4F7AZTsTm+oUxxl0ueSDNzXEKzrN5pCahSUe:q1UbqJIpr0ueYNzXEKzrN5pCahSUe

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:39423:RAkIDQFPYzBFhTWqBURJCdIkrRAARFSSpQiNRHImApdgahwEukqBAxGBIlAAF0FgAwGBiBPllogUEFoCGkTCgKriFQqIgrKU

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:001838383838f8f8
Perceptual Hash:c936712736e11ec9
Difference Hash:157171696971b1b1
Wavelet Hash:003c3c3c3c3cfcfc
Color Hash:#a8ac53

Other Hashes

Crop Resistant:707e170b1f3e5880,82244b5156616181,157171696971b1b1

Scan History

Scan history not available

Unable to load historical scan data