zerophish / console
Register Sign in
URL THREAT INTELLIGENCE · v0.5.0 · OPERATIONAL

The full anatomy of a phishing site,
one URL at a time.

ZeroPhish renders the page, runs twelve detection signals against the DOM, certificate chain, brand fingerprint and threat feeds, and returns a typed verdict. Built for security teams and product engineers.

scan
100 scans / day · free · typical scan 2–4 s ·
try
Result scan f20b712a
Scan another →
CACHED Showing previous scan from 507 d ago. Click Reanalyze to run a fresh scan.
PHISHING · MEDIUM CONFIDENCE

Phishing detected

brand not applicable scan id f20b712a duration signals 0 failing / 0
Risk score 0.95
95 / 100 · —
Tags
URL anatomy
https :// .
flagged registered domain path protocol / query
Indicators of compromise 4 · click any row to copy
URL hxxps://blockxplorers[.]com/form[.]html
Brand not applicable
Screenshot https://cdn.zerophish.ai/5db617b0-1674-42dc-ae40-822391fe1d7b.jpg
Scan ID f20b712a-19d1-419d-b4e2-bf6fa794e979
Detection signals 0 fail · 0 warn · 0 pass

No detection signals on this scan — it predates the signal pipeline. Re-analyze to capture them.

Captured page from scan
Captured page
screenshot · captured at scan live page render
Brand impersonation visual + DOM analysis

No brand impersonation signals available.

Technical profile resolved at scan time

No technical metadata captured for this scan.

Analyst summary AI-generated
Initial scan heuristic + LLM

This site https://blockxplorers.com/form.html provides a form requesting sensitive wallet details, such as the recovery phrase or private key, with suspicious elements present in the HTML. The brand name is not identifiable, and the domain name does not correlate with any known legitimate service. A number of features suggest that this is potentially a phishing site: the form requesting recovery phrase or private key (information that should not be shared), the lack of reputable brand identification, and the use of generic terms and anonymized domains to avoid detection.