Phishing Analysis
Detailed analysis of captured phishing page
Captura Visual
No screenshot available
Informações de Detecção
https://cloud-io-trezur-r-sta-rt.typedream.app/
Detected Brand
Trezor
Country
International
Confiança
100%
HTTP Status
200
Report ID
b9d3dc69-a28…
Analyzed
2025-12-20 15:16
Hashes de Conteúdo (Similaridade HTML)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T19D63E88A6854602A472740E348FB1FC9B7391C2FF92946D1A5B8C7A5B3DC8F53127B4B |
|
CONTENT
ssdeep
|
768:JyWuq1yPUQFWuZsi51n/LLM9XTXX8UwFPTcnUOYzmnHyC2llnJUHo5HYfsUpnGXp:+6nyOloQzZs8oWQbp |
Hashes Visuais (Similaridade de Captura)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
9f13f4d4c05078f5 |
|
VISUAL
aHash
|
fe3f0f1f7f1f3fff |
|
VISUAL
dHash
|
986378f8c0306666 |
|
VISUAL
wHash
|
7c1f0f1f7f001332 |
|
VISUAL
colorHash
|
07008000e00 |
|
VISUAL
cropResistant
|
986378f8c0306666 |
Análise de Código
Risk Score
70/100
Nível de Ameaça
ALTO
🎣 Credential Harvester
🎣 OTP Stealer
🎣 Card Stealer
🎣 Banking
🎣 Personal Info
🔬 Threat Analysis Report
• Threat: Trezor phishing designed to mislead users into downloading malicious software or revealing sensitive information.
• Target: Trezor hardware wallet users.
• Method: The site impersonates the official Trezor website using a lookalike website on a free hosting service to distribute malware.
• Exfil: Not applicable as this is likely distributing malware via a fake Trezor Suite download link.
• Indicators: Free hosting (typedream.app), brand impersonation, domain mismatch.
• Risk: HIGH - Potential for malware infection or information compromise.
📡 API Calls Detected
- POST
- GET
- https://typedream.com/forms?utm_source=form-thank-you-page:
Similar Websites
Pages with identical visual appearance (based on perceptual hash)
"Nunca pensei que aconteceria comigo"
Isso dizem os 2,3 milhões de vítimas a cada ano. Não espere para ser uma estatística.