# homepage-trozr.zapier.app — MALICIOUS

> homepage-trozr.zapier.app is a Trojan redirect domain that evades detection with a 6/95 VirusTotal score.

## Summary
PhishDestroy identifies homepage-trozr.zapier.app as an active generic phishing domain posing as a legitimate Zapier service to deliver a browser Trojan. This domain was flagged by 2 blocklists and 6/95 VirusTotal vendors, indicating partial but not universal detection. It resolves to IP 64.239.123.65 and uses a Let’s Encrypt SSL certificate, suggesting an attempt to appear trustworthy while hosting malicious content.  homepage-trozr.zapier.app was registered under an unknown registrar and currently points to a malicious host with a low detection rate of 6/95 on VirusTotal. It has been blocked by PhishingArmy and OISD, two reputable blocklists, and is flagged as malicious by Google Safe Browsing. The domain’s infrastructure includes a single IP (64.239.123.65), and its SSL certificate is issued by Let’s Encrypt, which attackers frequently exploit to bypass security checks.  This domain remains active as of the latest intelligence sweep. Users are advised to block homepage-trozr.zapier.app at the network and host level and inspect browser extensions for unauthorized scripts. While current blocklists and security tools provide partial coverage, the domain’s evasion tactics and low detection rate pose a persistent risk. Remain vigilant and report any suspicious browser behavior to your IT security team.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: REGISTRAR_NOT_FOUND
- IP: 64.239.123.65

## Detection Status
- VirusTotal: 6 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["PhishingArmy", "OISD"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/homepage-trozr.zapier.app
- PhishDestroy: https://phishdestroy.io/domain/homepage-trozr.zapier.app/
- LLM endpoint: https://phishdestroy.io/domain/homepage-trozr.zapier.app/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/homepage-trozr.zapier.app/
Last updated: 2026-04-08