ScanMalware.com

Security Scan Report: coiinbahseexxtension.gitbook.io

Submitted: Nov 22, 2025, 9:28:41 PMCompleted: Nov 22, 2025, 9:29:39 PMpubliccompleted
Loading additional data...

Summary

This website contacted 12 IPs in 1 country across 4 domains to perform 43 HTTP transactions. The main domain is coiinbahseexxtension.gitbook.io and was registered NaN years ago.

Submitted URL: https://coiinbahseexxtension.gitbook.io/usa/

AI Security Verdict

High Risk

Confidence: 88%

7
Risk Score

Site impersonates Coinbase on an unranked domain – high‑risk phishing.

Risk Factors
Brand impersonation (Coinbase) on an unranked GitBook subdomain
Unranked domain presenting a well‑known brand
Domain age information unavailable

Details

Bot Protection Detected

This website is protected by Cloudflare bot protection. Our scanner was challenged or blocked during access.

Page Title

Coinbase Extension: Empowering Crypto Transactions | usa

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

cryptocurrency blockchain

(71%)

Domain Information

The domain name 'coiinbahseexxtension.gitbook.io' uses the British Indian Ocean Territory country-code top-level domain (.io) and includes subdomain 'coiinbahseexxtension'. The core label 'gitbook' covers 7 characters split between 3 vowels and 4 consonants. Tokenizing the label suggests 3 words: g, it, book. Expect 2 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://coiinbahseexxtension.gitbook.io/usa/

Page Load Overview

1.54s
Total Load Time
43
HTTP Requests
4
Domains
174 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:231 chars
Detector Agreement:100%

Website Classification

Primary Category

cryptocurrency blockchain71% confidence
Type: spa
Method: ml+structural

All Detected Categories

cryptocurrency blockchain
71%
technology software
68%
documentation technical
58%
government public service
28%
adult content
27%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
34172.64.146.167United States
AS13335CLOUDFLARENET
10104.18.41.89United States
AS13335CLOUDFLARENET
6172.64.147.209United States
AS13335CLOUDFLARENET
3172.64.147.188United States
AS13335CLOUDFLARENET
3104.18.40.47United States
AS13335CLOUDFLARENET
3104.18.40.68United States
AS13335CLOUDFLARENET
32a06:98c1:310d::ac40:92a7United States
AS13335CLOUDFLARENET
32606:4700:4404::6812:2959United States
AS13335CLOUDFLARENET
32606:4700:4407::6812:282fUnited States
AS13335CLOUDFLARENET
32606:4700:4402::ac40:93d1United States
AS13335CLOUDFLARENET
4312--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T186C3E71A6001F7055EB2DE10633ABD3981DED737DBB8D4ADF20DD9A61B8813B07A3954

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:Gf/xLAyWvvt/dVP+O86xdXBh+q3nRvIOuP1lJcEJDUFhhywBGVPCcAjjRTqKfFwc:l3grJ83x4/2D

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:119409:giRBEFBChMKogAoMSgAkRZAEAQpBZg6RWAnTCBYJlCRJdyUqAGoQbYLYgxm4bEgQcAGkBwnPLQRBAqAghEhDQQEFPIQQSNIy

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:e7c7e3e3e7e7ffff
Perceptual Hash:e66699990e6666c9
Difference Hash:5d1c2d050e0e1c40
Wavelet Hash:0107e3e3c3c3c33f
Color Hash:#78753a

Other Hashes

Crop Resistant:5d1c2d050e0e1c40,3831b13531313135

Scan History

Scan history not available

Unable to load historical scan data