DOM #3

signature profile

Multiple scam domains share identical DOM structure signatures, indicating they were built from a cloned codebase or template. This structural replication across 17 domains suggests a coordinated phishing or fraud operation using mass-produced website infrastructure.

Fingerprint61c4d3263fe79356f149ed9a38dd61f7ec4c24ed5096051bbee59a4dca71177d

Detections: 17
Hash type: DOM structure
Status: Active
Last scanned: May 2026

detection timeline

2026-03

2026-04

2026-05

Detected domains

1fuel.io
OfflineTrust 1Apr 6, 2026
aigtrade.com
OnlineTrust 10Apr 30, 2026
allp.uk
OnlineTrust 1Apr 6, 2026
assetplusfinancial.limited
OnlineTrust 1Apr 11, 2026
bluechaincapital.com
OnlineTrust 4Apr 26, 2026
bull-verse.org
OnlineTrust 1Mar 24, 2026
coinvervenetwork.io
OnlineTrust 1May 7, 2026
coinvestify.com
OfflineTrust 1Apr 26, 2026
dcentweb3ledger.com
OnlineTrust 1May 13, 2026
flaggschiff.ag
OnlineTrust 8Apr 1, 2026

Domain	Status	Trust	First seen
1fuel.io	Offline	1	Apr 6, 2026
aigtrade.com	Online	10	Apr 30, 2026
allp.uk	Online	1	Apr 6, 2026
assetplusfinancial.limited	Online	1	Apr 11, 2026
bluechaincapital.com	Online	4	Apr 26, 2026
bull-verse.org	Online	1	Mar 24, 2026
coinvervenetwork.io	Online	1	May 7, 2026
coinvestify.com	Offline	1	Apr 26, 2026
dcentweb3ledger.com	Online	1	May 13, 2026
flaggschiff.ag	Online	8	Apr 1, 2026

Related signals

DOM

DOM #30

Nexus Syndicate

Active

77
detections

Content #4

Nexus Syndicate

Active

14
detections

Favicon #18

Nexus Syndicate

Active

8
detections