URL THREAT INTELLIGENCE · v0.5.0 · OPERATIONAL
The full anatomy of a phishing site,
one URL at a time.
ZeroPhish renders the page, runs twelve detection signals against the DOM, certificate chain, brand fingerprint and threat feeds, and returns a typed verdict. Built for security teams and product engineers.
100 scans / day · free
·
typical scan 2–4 s
·
try
PHISHING · MEDIUM CONFIDENCE
Phishing detected
Risk score
0.80
80 / 100 · —
URL anatomy
https
://
.
flagged
registered domain
path
protocol / query
Indicators of compromise
| URL | hxxps://aztecoption[.]com/en/aztec-account/account[.]php | |
| Brand | Aztec Trading Options | |
| Screenshot | https://cdn.zerophish.ai/7dd3080e-4805-4930-ab41-0afbbc35ddc0.jpg | |
| Scan ID | c9b831aa-e0ee-41f5-ba96-8c2b8cd5f2c7 |
Detection signals
No detection signals on this scan — it predates the signal pipeline. Re-analyze to capture them.
Captured page
Brand impersonation
No brand impersonation signals available.
Technical profile
No technical metadata captured for this scan.
Analyst summary
Initial scan
Upon analyzing the provided URL, HTML and OCR-extracted text, there are several reasons to classify this site as a phishing site:
- The domain name ‘aztecoption.com’ does not match the company name ‘Aztec Trading Options’ mentioned in the page content. Real companies generally possess domain names that closely resemble their brand name. This mismatch is a strong indicator of a phishing attempt.
- The URL contains ‘/account.php’, which is a common path used by phishing sites mimicking login pages.
- No SSL encryption (HTTPS) is applied on the website, which is a usual standard of secure and genuine sites.
- The HTML structure shows signs of mimicry, and the design attempts to resemble a legitimate company’s login page.
For the reasons listed above, the phishing score has been set to 0.8, indicating a high risk of phishing.