ScanMalware.com

Security Scan Report: trezor-suite-start-auth.typedream.app

Submitted: Dec 8, 2025, 2:34:09 AMCompleted: Dec 8, 2025, 2:34:40 AMpubliccompleted
Loading additional data...

Summary

This website contacted 14 IPs in 2 countries across 5 domains to perform 81 HTTP transactions. The main domain is trezor-suite-start-auth.typedream.app.

Submitted URL: https://trezor-suite-start-auth.typedream.app/

AI Security Verdict

High Risk

Confidence: 82%

7
Risk Score

The site mimics Trezor Suite on an untrusted domain and should be treated as phishing.

Risk Factors
Brand impersonation on a non‑official, unranked domain
Suspicious subdomain name implying authentication (trezor-suite-start-auth)
Untrusted hosting platform (Typedream) used for a crypto‑related brand
Domain age information unavailable

Details

Page Title

Trézór Suite® (Official) – Securely Manage Your Crypto Assets

Scan Type

public

Language

🇺🇸

English

(51% confidence)

Category

technology software

(49%)

Domain Information

Within the application-focused generic top-level domain (.app), 'trezor-suite-start-auth.typedream.app' is registered; it also runs on subdomain 'trezor-suite-start-auth'. The core label 'typedream' covers 9 characters holding 3 vowels versus six consonants. Segmentation suggests two words: type, dream. Median word length is 4.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://trezor-suite-start-auth.typedream.app/

Page Load Overview

8.61s
Total Load Time
81
HTTP Requests
5
Domains
2.2 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:51%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:51%
Script Type:Latin
Text Length:8,736 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software49% confidence
Type: static
Method: ml+structural

All Detected Categories

technology software
49%
cryptocurrency blockchain
47%
finance banking
34%
corporate
25%

Detected Features

OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
16104.18.15.90United States
AS13335CLOUDFLARENET
5188.114.97.3United States
AS13335CLOUDFLARENET
5104.17.25.14United States
AS13335CLOUDFLARENET
5216.58.212.131United States
AS15169GOOGLE
5142.250.184.202United States
AS15169GOOGLE
5188.114.96.3United States
AS13335CLOUDFLARENET
52a00:1450:4001:81d::200aFrankfurt am Main, Hesse, Germany
AS15169GOOGLE
52a00:1450:4001:813::2003Frankfurt am Main, Hesse, Germany
AS15169GOOGLE
5104.17.24.14United States
AS13335CLOUDFLARENET
52606:4700::6812:f5aUnited States
AS13335CLOUDFLARENET
8114--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T15133904A8559102D431B40E39CB21FD8FAB95C6EFA3116D399FC03A6B38EDF1365861B

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:boR9p9ooYNpRMdu2ufpG2TKSgrQZMkRJt5IoM7YpxwiB0PUTc15CMRmhwH/Pf9Ne:9JJmQ+NKRP

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:52932:NBcFQiBSiQSAJ5lCjUTJhMQNBrgIB2U9eQBAYJBoQEKIgHCijCoBBBQdEFBMJRn1ggUBkhLpFGgsLpQArDphAEwmhh6IkwmJ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:7f737333300000ff
Perceptual Hash:80a4b1139e11faff
Difference Hash:e6e2a2e6e2909030
Wavelet Hash:7f737333304000ff
Color Hash:#3a7878

Other Hashes

Crop Resistant:e6e2a2e6e2909030,f3f3f3fbdbdbc9c9,616163333222b294,e173391930303011

Scan History

Scan history not available

Unable to load historical scan data