ScanMalware.com

Security Scan Report: prezo.ai

Redirected to: https://prezo.ai/public/copy-of--evri-update--98406e71-1512-408a-ad36-29b3a9a3df1b#63054f80-3863-4816-bd63-71be8276eb31

Site favicon
Submitted: Dec 5, 2025, 10:37:45 AMCompleted: Dec 5, 2025, 10:39:30 AMpubliccompleted
Loading additional data...

Summary

This website contacted 30 IPs in 2 countries across 9 domains to perform 136 HTTP transactions. The main domain is prezo.ai.

Submitted URL: https://prezo.ai/public/copy-of--evri-update--98406e71-1512-408a-ad36-29b3a9a3df1b

Effective URL: https://prezo.ai/public/copy-of--evri-update--98406e71-1512-408a-ad36-29b3a9a3df1b#63054f80-3863-4816-bd63-71be8276eb31Redirected

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

Phishing page impersonating Evri on an unrelated, unranked domain.

Risk Factors
Brand impersonation on a non‑official, unranked domain
Unranked domain (not in Cisco Umbrella top 1M) used for brand spoofing
Suspicious, newly‑registered or unknown‑age domain
Urgent phishing lure encouraging user to click a link
Domain age information unavailable

Details

Page Title

®Evri Update 📦

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

corporate

(50%)

Domain Information

You're looking at domain 'prezo.ai' on the Anguillan country-code top-level domain (.ai) without a subdomain. The registrable portion 'prezo' spans 5 characters with two vowels and three consonants. Tokenizing the label suggests two words: prez, o. Median word length comes out to 2.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://prezo.ai/public/copy-of--evri-update--98406e71-1512-408a-ad36-29b3a9a3df1b

Page Load Overview

1.20s
Total Load Time
136
HTTP Requests
9
Domains
1.8 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:157 chars
Detector Agreement:100%

Website Classification

Primary Category

corporate50% confidence
Type: dynamic
Method: structural

All Detected Categories

corporate
50%

Detected Features

OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
80104.26.1.50United States
AS13335CLOUDFLARENET
37104.26.3.158United States
AS13335CLOUDFLARENET
20104.21.43.148United States
AS13335CLOUDFLARENET
734.120.195.249Kansas City, Missouri, United States
AS396982GOOGLE-CLOUD-PLATFORM
7104.20.17.167United States
AS13335CLOUDFLARENET
4172.67.74.244United States
AS13335CLOUDFLARENET
4172.66.166.164United States
AS13335CLOUDFLARENET
4104.26.2.158United States
AS13335CLOUDFLARENET
4172.67.73.144United States
AS13335CLOUDFLARENET
4104.26.0.50United States
AS13335CLOUDFLARENET
13630--

Detected Technologies4

Open-Graph-Protocolvwebsite
100%
HTTP/3
40%
Cloudflare Bot Management
40%
Cloudflare
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T14124D769A75C503F7C23D1F5A6E4AD8C701BB2C2DF371BE9B99210208AD1BF61D62724

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

6144:3wLwJCiadZM2axhz5nEMvX+kfHkGW6Jz0kOtvTGfHDB2k/H24wLwJCiadZM2axh2:kGfHAG04NKWQLZqdO

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:216559:AK0gBgE4EBOQhHALUKsicKMUBhgJpaqZAAAoiQERJCQANAfggCXWIpGhAMoENgDjUyQJ0OLgehAaQQwAYCAmIAHhcpBSFORG

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:df9f9f9f9f9f9f9f
Perceptual Hash:bcc3e7f0c11ec3c0
Difference Hash:3034303934343630
Wavelet Hash:81810f0f1f1f1f1d
Color Hash:#64d22d

Other Hashes

Crop Resistant:3034303934343630,474c4c4d0131392d

Scan History

Scan history not available

Unable to load historical scan data