Security Scan Report: olx-otrzym.cfd

Redirected to: https://olx-otrzym.cfd/o/qpp4h/1765272322020#selectedbank9&BLNC_VB

Submitted: Dec 9, 2025, 5:50:05 PMCompleted: Dec 9, 2025, 5:51:00 PMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 57 HTTP transactions. The main domain is olx-otrzym.cfd and was registered NaN years ago.

Submitted URL: https://olx-otrzym.cfd/o/qpp4h/1765272322020#selectedbank9

Effective URL: https://olx-otrzym.cfd/o/qpp4h/1765272322020#selectedbank9&BLNC_VBRedirected

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

Phishing site impersonating Bank Millennium; newly created, circular redirect, and sensitive data form make it a confirmed scam.

Risk Factors
Brand impersonation on a newly registered domain
Circular redirect indicating URL manipulation
Form collecting sensitive financial information
Domain age less than 7 days (critical)
Unranked domain with no reputation
Domain age information unavailable

Details

Page Title

Bank Millennium 1765272322020

Scan Type

public

Language

🇵🇱

Polish

(41% confidence)

Category

blog personal website

(100%)

Domain Information

Within the .cfd top-level domain, 'olx-otrzym.cfd' is registered. The second-level label 'olx-otrzym' is 10 characters long holding two vowels versus seven consonants; bonus characters include 1 hyphen. Splitting it apart reveals 6 words: ol, x, o, tr, zy, m. The median word length lands at 1.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://olx-otrzym.cfd/o/qpp4h/1765272322020#selectedbank9

Page Load Overview

8.63s
Total Load Time
57
HTTP Requests
1
Domains
1.5 MB
Total Size

Language Analysis

Primary Language

🇵🇱Polish
Code: pl
Confidence:41%
Script:Latin
Direction:ltr

Detection Details

Language Code:pl
Detection Confidence:41%
Script Type:Latin
HTML Lang Attribute:ru
Text Length:4,943 chars
Detector Agreement:50%
Language mismatch: Declared as ru but detected as pl

Website Classification

Primary Category

blog personal website100% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

blog personal website
100%
finance banking
100%
education learning
100%
cryptocurrency blockchain
100%
government public service
100%

Detected Features

OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
5786.54.24.12Latvia
AS208885Noyobzoda Faridduni Saidilhom
571--

Detected Technologies2

JQueryv3.6.0
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1CFC319B880F10537540786AAAFF6675A2EA9D00BCA46D94477EC82E2DFC7EC1D90731D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:dEjliWb0OtxlyJEjlit0YstawlyqEjlia0Ystawly0XfLryZ:dEjAA8JEjAY0xqEjAb0xiryZ

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:125360:iECcVIHTSg1TDIAFMDIIk72KMHRphEaK2CkMwzAWCWCACBEH2EBCUyuoDFgICAEIh4IqLwAaUBAAGKkSp1VaohoAAXAwArBz

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:b8b8f8b8b8f8e0e0
Perceptual Hash:cdcd36498862b277
Difference Hash:7232223232a24240
Wavelet Hash:b8f8b8b8b8f8e0e0
Color Hash:#2d8684

Other Hashes

Scan History

Scan history not available

Unable to load historical scan data