Sign in Sign up

CO

CO

Genome Signature

Content #8

Active Network: Nexus Syndicate

signature profile

Identical page content hash found across 4 domains with the 'bitnest' brand name using different top-level domains (.ac, .fi, .la, .so), indicating a cloned codebase and coordinated infrastructure deployment for the same scam operation. This content replication across multiple TLDs is a strong indicator of a unified phishing or fraudulent scheme using geographic domain variation to evade takedowns.

Fingerprint73ca48b5821e665af79f56f3a706ee95a5112b9fcdd6e4068194632dd0374e9e

Detections: 4
Hash type: Content hash
Status: Active
Last scanned: May 2026

detection timeline

4

2026-04

Detected domains

4

bitnest.ac
OnlineTrust 1Apr 6, 2026
bitnest.fi
OnlineTrust 1Apr 6, 2026
bitnest.la
OnlineTrust 1Apr 6, 2026
bitnest.so
OnlineTrust 1Apr 6, 2026

Domain	Status	Trust	First seen
bitnest.ac	Online	1	Apr 6, 2026
bitnest.fi	Online	1	Apr 6, 2026
bitnest.la	Online	1	Apr 6, 2026
bitnest.so	Online	1	Apr 6, 2026

Related signals

3

Favicon #15

Nexus Syndicate

8
detections

Tracking: GA4 #4

Nexus Syndicate

8
detections

DOM #21

Nexus Syndicate

7
detections