Security Scan Report: upholidilogin.gitbook.io

Submitted: Nov 15, 2025, 7:04:41 AMCompleted: Nov 15, 2025, 7:05:23 AMpubliccompleted
Loading additional data...

Summary

This website contacted 12 IPs in 0 countries across 4 domains to perform 44 HTTP transactions. The main domain is upholidilogin.gitbook.io.

Submitted URL: https://upholidilogin.gitbook.io/sign-in/

AI Security Verdict

High Risk

Confidence: 82%

7
Risk Score

Impersonates Uphold login on a GitBook subdomain – high‑risk phishing page.

Risk Factors
Brand impersonation on a non‑official domain
UNRANKED domain claiming to be a major service
Domain age unknown (likely newly created)
Unicode characters in brand name to evade detection
Domain age information unavailable

Details

Primary Scan Blocked — Fallback Capture Shown

The primary scanner could not load this page (possible bot protection). The screenshot and page details shown were captured by a fallback browser that loaded the page successfully.

Page Title

Ûphold Loℊin | Sign In 💎

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

healthcare medical

(82%)

Domain Information

Within the British Indian Ocean Territory country-code top-level domain (.io), 'upholidilogin.gitbook.io' is registered and includes subdomain 'upholidilogin'. The core label 'gitbook' covers 7 characters holding three vowels versus 4 consonants. It segments into three words: g, it, book. Median word length is 2 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://upholidilogin.gitbook.io/sign-in/

Page Load Overview

11.87s
Total Load Time
44
HTTP Requests
4
Domains
1.7 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:295 chars
Detector Agreement:100%

Website Classification

Primary Category

healthcare medical82% confidence
Type: spa
Method: ml+structural

All Detected Categories

healthcare medical
82%
government public service
38%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
11104.18.40.47UnknownUnknown
3172.64.147.209UnknownUnknown
3104.18.41.89UnknownUnknown
3172.64.147.188UnknownUnknown
3172.64.146.167UnknownUnknown
32606:4700:4407::6812:282fUnknownUnknown
32a06:98c1:310d::ac40:92a7UnknownUnknown
32606:4700:4408::6812:2844UnknownUnknown
32a06:98c1:3101::ac40:93bcUnknownUnknown
3104.18.40.68UnknownUnknown
4412--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T126C3E90A9101F3495DB2DE15633ABD3D80DEDA1797A8C4BEF20ED5A51B8813B17E3E60

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:gy3gnbLbvV3xF/MTTcE7cEsN2RcROQFhrVSEkTu95:2btD

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:127654:KIIGAIAREcqkxlIU2chKKAw1eTIgNDJRQEACFIEBpzOcUEymnAQERAFEaAtAgSphsERy6RQGEFAUTUwDISKEaYmFKnORAUAw

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffc7c3c3c3efffff
Perceptual Hash:b131ce8e33996c65
Difference Hash:5996969a9e1e0042
Wavelet Hash:00c30303c3c3ff3f
Color Hash:#8ebf40

Other Hashes

Scan History

Scan history not available

Unable to load historical scan data