ScanMalware.com

Security Scan Report: trezorsiostt.gitbook.io

Submitted: Dec 7, 2025, 3:31:20 PMCompleted: Dec 7, 2025, 3:31:51 PMpubliccompleted
Loading additional data...

Summary

This website contacted 12 IPs in 1 country across 4 domains to perform 44 HTTP transactions. The main domain is trezorsiostt.gitbook.io.

Submitted URL: https://trezorsiostt.gitbook.io/us/

AI Security Verdict

High Risk

Confidence: 88%

7
Risk Score

Page impersonates Trezor brand on an unranked gitbook.io subdomain; classified as HIGH_RISK phishing.

Risk Factors
Brand impersonation on an unusual domain
Unranked domain despite brand claims
Domain age unknown / likely newly registered
Domain age information unavailable

Details

Bot Protection Detected

This website is protected by Cloudflare bot protection. Our scanner was challenged or blocked during access.

Page Title

Trezor.io/start gitbook | us

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(51%)

Domain Information

Domain 'trezorsiostt.gitbook.io' uses the British Indian Ocean Territory country-code top-level domain (.io) and includes subdomain 'trezorsiostt'. Its registrable label 'gitbook' stretches across 7 characters holding three vowels versus four consonants. It segments into 3 words: g, it, book. Median word length is two characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://trezorsiostt.gitbook.io/us/

Page Load Overview

5.48s
Total Load Time
44
HTTP Requests
4
Domains
153 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:793 chars
Detector Agreement:50%

Website Classification

Primary Category

technology software51% confidence
Type: spa
Method: ml+structural

All Detected Categories

technology software
51%
documentation technical
41%
cryptocurrency blockchain
38%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
3172.64.147.209United States
AS13335CLOUDFLARENET
3104.18.40.68United States
AS13335CLOUDFLARENET
3104.18.41.89United States
AS13335CLOUDFLARENET
3172.64.146.167United States
AS13335CLOUDFLARENET
3172.64.147.188United States
AS13335CLOUDFLARENET
3104.18.40.47United States
AS13335CLOUDFLARENET
32606:4700:4407::6812:282fUnited States
AS13335CLOUDFLARENET
32a06:98c1:3101::ac40:93bcUnited States
AS13335CLOUDFLARENET
32606:4700:4404::6812:2959United States
AS13335CLOUDFLARENET
32606:4700:4402::ac40:93d1United States
AS13335CLOUDFLARENET
4412--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T145C3FA1E7105F7056DB2DE21233EBE39818EC7279778D4ADF20DCAA6178843B1BA2D54

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:sfRqLAy8vvt/dVP+O8NTXBh+q3nRvIOuP1lJcEsuUF2xFJKhkwBGkPCcejjRT9dZ:93grsq93xlvJFi8j

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:128241:AxHqxmQAWTEIBmEJKZskyICIsqFjkC2IigBBBwTEIGAQVJQIRYRGiAh/IQrIQiAdcZAAJfsZDAYwHQQIQLAgEQyAAFI1yIAB

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:cfc3cfcfefc3c3ff
Perceptual Hash:b1330f638b318ece
Difference Hash:591e18180c1e1e50
Wavelet Hash:01c3c7c7c7c3c30f
Color Hash:#3a7478

Other Hashes

Crop Resistant:591e18180c1e1e50

Scan History

Scan history not available

Unable to load historical scan data