ScanMalware.com

Security Scan Report: trifi.top

Redirected to: https://trifi.top/

Site favicon
Submitted: Mar 3, 2026, 11:09:18 AMCompleted: Mar 3, 2026, 11:10:58 AMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 2 countries across 3 domains to perform 6 HTTP transactions. The main domain is trifi.top and was registered NaN years ago.

Submitted URL: http://trifi.top/

Effective URL: https://trifi.top/Redirected

AI Security Verdict

Low Risk

Confidence: 78%

2
Risk Score

New domain with heavily obfuscated JavaScript but no malicious indicators; low overall risk.

Risk Factors
High JavaScript obfuscation score (critical) without clear malicious behavior
Safety Factors
Serves content over HTTPS
No credential or payment forms present
No malicious Indicators of Compromise detected
No YARA malware patterns detected
No network IDS alerts detected
Domain age information unavailable

Details

Page Title

N/A

Scan Type

public

Language

🇺🇸

English

(50% confidence)

Category

cryptocurrency blockchain

(87%)

Domain Information

Domain 'trifi.top' uses the .top top-level domain and has no subdomain. The second-level label 'trifi' is 5 characters long containing two vowels alongside three consonants. Splitting it apart reveals two words: tri, fi. Expect 2.5 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://trifi.top/

Page Load Overview

13.83s
Total Load Time
41
HTTP Requests
4
Domains
57 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:50%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:50%
Script Type:Latin
HTML Lang Attribute:zh-CN
Text Length:1,019 chars
Detector Agreement:100%
Language mismatch: Declared as zh but detected as en

Website Classification

Primary Category

cryptocurrency blockchain87% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

cryptocurrency blockchain
87%
finance banking
46%
technology software
39%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
15111.231.169.247Shanghai, Shanghai, China
AS45090Shenzhen Tencent Computer Systems Company Limited
13172.67.208.228United States
AS13335Cloudflare, Inc.
13104.21.85.184United States
AS13335Cloudflare, Inc.
413--

Detected Technologies1

X-UA-Compatible
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1DC54C7219B1721276127DA6C76C0FA885F18C323D4724ABAFE95391DCBD39891267F0F

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:k2mDo28Y7SrW3YeWXA1u9w4HCe/l4zUg2fqME4jQ378OaiZkW1Yu8e2Je4K7fTLE:iBP8jhIfaGBqTBIDUrf

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:291148:cgBFlWAQSgQwgCZQdn+eJ60KeiDnISCAuQACKAEAFEDKABzKqoYan7YqmEAMUQnIUJkQBU5ABeRBCmrhADQKJCgFAMT4fAtS

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffffffffffffff00
Perceptual Hash:e3b263b263984dd8
Difference Hash:0c08000000000055
Wavelet Hash:243c3c3cf3f3db00
Color Hash:#6f3a78

Other Hashes

Crop Resistant:0c08000000000000,0455555555545545

Scan History

Scan history not available

Unable to load historical scan data