URL THREAT INTELLIGENCE · v0.5.0 · OPERATIONAL

The full anatomy of a phishing site,
one URL at a time.

ZeroPhish renders the page, runs twelve detection signals against the DOM, certificate chain, brand fingerprint and threat feeds, and returns a typed verdict. Built for security teams and product engineers.

100 scans / day · free · typical scan 2–4 s ·

try

PHISHING · MEDIUM CONFIDENCE

Phishing detected

brand UNION NACIONAL DE GOBIERNOS LOCALES scan id ffe55566 duration — signals 0 failing / 0

Risk score 0.80

80 / 100 · —

Was this verdict correct?

Tags

URL anatomy

https :// .

flagged registered domain path protocol / query

Indicators of compromise 4 · click any row to copy

Defang hxxps://example[.]com

URL	hxxps://formulario-digital-2026-apknm[.]cr-web[.]workers[.]dev/
Brand	UNION NACIONAL DE GOBIERNOS LOCALES
Screenshot	https://cdn.zerophish.ai/79406307-1049-45d4-9353-1990a6479089.jpg
Scan ID	ffe55566-9819-4f9a-9515-dd43d5d91db2

Detection signals 0 fail · 0 warn · 0 pass

No detection signals on this scan — it predates the signal pipeline. Re-analyze to capture them.

Captured page from scan

screenshot · captured at scan live page render

Brand impersonation visual + DOM analysis

No brand impersonation signals available.

Technical profile resolved at scan time

No technical metadata captured for this scan.

Analyst summary AI-generated

Initial scan heuristic + LLM

The URL does not match any known legitimate domains for the brand “UNION NACIONAL DE GOBIERNOS LOCALES”. The website is promoting a national tax declaration service for the year 2026, which could be a form of social engineering. Along with the suspicious URL, it also asks users for input on declaration codes and tax waiver codes, which are sensitive information. Therefore, its likely this is a phishing site designed to steal personal information.

The full anatomy of a phishing site, one URL at a time.

Phishing detected

The full anatomy of a phishing site,
one URL at a time.