Phishing Analysis
Detailed analysis of captured phishing page
70
Risk Score
High Risk
Threat Level: ALTO
• Impersonating: Trezor
- • Threat: Trezor phishing targeting Trezor users.
- • Target: Trezor hardware wallet users.
- • Method: Impersonating the Trezor Suite application.
- • Exfil: Likely credential harvesting or private key theft.
- • Indicators: Domain uses 'typedream.app', which is a free hosting platform. Domain does not match official Trezor website.
- • Risk: CRITICAL - Potential for cryptocurrency theft and credential compromise.
Visual Capture
No screenshot available
Detection Info
https://start-us-trezor-suite-sso.typedream.app/
Detected Brand
Trezor
Country
International
Confidence
100%
HTTP Status
200
Report ID
2a87787d-c68…
Analyzed
2025-12-20 01:22
Content Hashes (HTML Similarity)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T121731B9A2455701A076380D394BB2B8AF7791C2FF92805E1A4B4C7E572B88F5316BF4F |
|
CONTENT
ssdeep
|
768:wpyWuPyW/QF1Wu9XM/uCZn1LUMRsRNwKTFl1n5fSorYAS8n+b/LniP8qBI+MUX87:w+2lVyOloQzZs8oWQbp |
Visual Hashes (Screenshot Similarity)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
938cf24ce1d636c3 |
|
VISUAL
aHash
|
7e1f1f0b0100efc7 |
|
VISUAL
dHash
|
f0f1fdd3dbbc591c |
|
VISUAL
wHash
|
7e1f1f0b0100efc7 |
|
VISUAL
colorHash
|
07c00018000 |
|
VISUAL
cropResistant
|
fcf1fdfdfdd3cbdc,f3f371b9fce6a6a7,b9a9986c25a9a9a9,a282cc4b1359a2a2,18024949581c1c0d,fcf1fdfdd7d3cabc,05452bd8c42b5523,e6f83e87c1b088c9,27434b9b1b296949 |
Code Analysis
Risk Score
70/100
Threat Level
ALTO
🔬 Threat Analysis Report
• Threat: Trezor phishing targeting Trezor users.
• Target: Trezor hardware wallet users.
• Method: Impersonating the Trezor Suite application.
• Exfil: Likely credential harvesting or private key theft.
• Indicators: Domain uses 'typedream.app', which is a free hosting platform. Domain does not match official Trezor website.
• Risk: CRITICAL - Potential for cryptocurrency theft and credential compromise.
Similar Websites
Pages with identical visual appearance (based on perceptual hash)
