DOM #21

signature profile

Identical DOM structure hash detected across 7 domains with shared 'bitnest' branding and varying TLDs, indicating cloned website codebase and layout used for coordinated phishing or scam infrastructure. The presence of this hash across multiple domains suggests automated deployment of a template-based scam site with minimal modifications.

Fingerprintfdd5a6e03d4ab3740f6070dd250db6c73e4d82906544a1d5a209482da4c6ed6d

Detections: 7
Hash type: DOM structure
Status: Active
Last scanned: May 2026

detection timeline

2026-04

2026-05

Detected domains

bitnest.ac
OnlineTrust 1Apr 6, 2026
bitnest.ad
OnlineTrust 1Apr 29, 2026
bitnest.fi
OnlineTrust 1Apr 6, 2026
bitnest.finance
OnlineTrust 11May 1, 2026
bitnest.is
OnlineTrust 1Apr 6, 2026
bitnest.la
OnlineTrust 1Apr 6, 2026
bitnest.so
OnlineTrust 1Apr 6, 2026

Domain	Status	Trust	First seen
bitnest.ac	Online	1	Apr 6, 2026
bitnest.ad	Online	1	Apr 29, 2026
bitnest.fi	Online	1	Apr 6, 2026
bitnest.finance	Online	11	May 1, 2026
bitnest.is	Online	1	Apr 6, 2026
bitnest.la	Online	1	Apr 6, 2026
bitnest.so	Online	1	Apr 6, 2026

Related signals

Favicon #15

Nexus Syndicate

Active

8
detections

GA4

Tracking: GA4 #4

Nexus Syndicate

Active

8
detections

Content #8

Nexus Syndicate

Active

4
detections