ScanMalware.com

Security Scan Report: trezorstart-ios-eng.square.site

Redirected to: https://trezorstart-ios-eng.square.site/

Submitted: Nov 13, 2025, 10:55:30 PMCompleted: Nov 13, 2025, 10:56:37 PMpubliccompleted
Loading additional data...

Summary

This website contacted 30 IPs in 0 countries across 14 domains to perform 101 HTTP transactions. The main domain is trezorstart-ios-eng.square.site.

Submitted URL: http://trezorstart-ios-eng.square.site/

Effective URL: https://trezorstart-ios-eng.square.site/Redirected

AI Security Verdict

High Risk

Confidence: 92%

9
Risk Score

High‑risk phishing site impersonating Trezor; do not trust.

Risk Factors
Brand impersonation on a low‑reputation, unranked domain
Circular redirect indicating possible URL manipulation
Newly registered domain with no established reputation
Use of a third‑party site builder (square.site) to mimic official Trezor site
Domain age information unavailable

Details

Page Title

Trezor.io/Start® — Starting Up Your Device | Trezor® | Trezor Suite

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

e-commerce shopping

(40%)

Domain Information

Within the .site top-level domain, 'trezorstart-ios-eng.square.site' is registered and includes subdomain 'trezorstart-ios-eng'. The registrable portion 'square' spans 6 characters with 3 vowels and 3 consonants. It segments into 1 word: square. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://trezorstart-ios-eng.square.site/

Page Load Overview

11.90s
Total Load Time
101
HTTP Requests
14
Domains
3.5 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:257 chars
Detector Agreement:50%

Website Classification

Primary Category

e-commerce shopping40% confidence
Type: static
Method: ml+structural

All Detected Categories

e-commerce shopping
40%
technology software
27%
corporate
25%

Detected Features

OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1474.115.51.7UnknownUnknown
33.233.158.111UnknownUnknown
335.186.247.156UnknownUnknown
3162.159.136.66UnknownUnknown
3146.75.121.49UnknownUnknown
3142.250.185.99UnknownUnknown
33.233.158.112UnknownUnknown
3162.159.137.66UnknownUnknown
3172.217.18.4UnknownUnknown
3142.250.185.195UnknownUnknown
10130--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1A7F4DF8AC5E24EBF6C0741BE935DEA38B309BCC1C9E42FD6B60481C452C6DF6A50F956

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:mgKQc19Sc19brWeBrPzeOg7Bl1vd7vTn3pZ7Z3LbLEUwYog8ky+gBiCRQ7H8dzac:69ac

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:774060:OUCBxkAQpgBcIWEQLGAPXLFMAgMiREwwlYkRpnxwoplJlql0QhCECApCKBidXxc2AIEXbEDmEFMCIA1IoEwEhAPDIBhAFzho

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:fff98f879fcb8fd7
Perceptual Hash:bccbc3c79630949c
Difference Hash:6a2b3e3b333b3f36
Wavelet Hash:ff818f878f838382
Color Hash:#7982d2

Other Hashes

Crop Resistant:6a2b3e3b333b3f36

Scan History

Scan history not available

Unable to load historical scan data