Security Scan Report: trezurlogoi.framer.media

Redirected to: https://trezurlogoi.framer.media/

Site favicon
Submitted: Dec 10, 2025, 8:52:51 AMCompleted: Dec 10, 2025, 8:53:41 AMpubliccompleted
Loading additional data...

Summary

This website contacted 42 IPs in 1 country across 5 domains to perform 28 HTTP transactions. The main domain is trezurlogoi.framer.media.

Submitted URL: http://trezurlogoi.framer.media/

Effective URL: https://trezurlogoi.framer.media/Redirected

AI Security Verdict

High Risk

Confidence: 92%

10
Risk Score

Impersonates Trezor login on a new, unranked domain with circular redirects – high‑risk phishing site.

Risk Factors
Brand impersonation of Trezor on a non‑official domain
Circular redirect indicating URL manipulation
Newly registered / unknown domain age
Unranked domain (not in Cisco Umbrella top 1M)
Domain age information unavailable

Details

Page Title

Trezor® Login | Getting started — Trezor*

Scan Type

public

Language

🇺🇸

English

(51% confidence)

Category

technology software

(75%)

Domain Information

Domain 'trezurlogoi.framer.media' uses the .media top-level domain, featuring subdomain 'trezurlogoi'. The core label 'framer' covers 6 characters split between two vowels and 4 consonants. It segments into one word: framer. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://trezurlogoi.framer.media/

Page Load Overview

24.42s
Total Load Time
28
HTTP Requests
5
Domains
77 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:51%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:51%
Script Type:Latin
Text Length:6,381 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software75% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

technology software
75%
finance banking
70%
cryptocurrency blockchain
70%
documentation technical
56%
corporate
25%

Detected Features

OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2865.9.175.65United States
AS16509AMAZON-02
018.173.205.73United States
AS16509AMAZON-02
035.71.142.77United States
AS16509AMAZON-02
018.173.205.72United States
AS16509AMAZON-02
013.226.244.91United States
AS16509AMAZON-02
013.226.244.93United States
AS16509AMAZON-02
052.223.52.2United States
AS16509AMAZON-02
065.8.131.73United States
AS16509AMAZON-02
018.173.205.84United States
AS16509AMAZON-02
065.8.131.45United States
AS16509AMAZON-02
2842--

Detected Technologies2

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T187A3FD53615EF1249DD728BEEB5DF52898292140FF32C28B62EE825F85CDDF8225271C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:RzVJVMaj5eHCe+FVieckV4VMaL9VsaTVhVk9VCwC86mIBG87:rC9TG87

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:101446:5yEgCOoACYlTQFUqgBsgAMAARgpmhgBURGJITgkABGBQBg02APEADSIAWcB/hoEGQGijaCDAEGthQBCUIBIShoqaUQC2ACAg

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:1eff190103ffffff
Perceptual Hash:ad4dd2923e0dd983
Difference Hash:74727333ef88eecc
Wavelet Hash:1e1a1101035f3fff
Color Hash:#79d2aa

Other Hashes

Crop Resistant:74727333ef88eecc

Scan History

Scan history not available

Unable to load historical scan data