0/100

high Risk

yource.cc

https://Yource.cc

37.72.98.11 · Bitency B.V.

Location

Amsterdam, The Netherlands

Domain Age

1814 days

HTTP

200 · 53.3s

SSL

Valid· E8, Let's Encrypt, US

Status

COMPLETED

Redirect Chain (2 hops)

301https://yource.cc/

301https://www.yource.cc/

Visual Evidence

Zoom

Title: "Homepage | Yource"

Save

Take this site down

Report to 50+ vendors instantly

KB/IOK Matches (0)—

No KB/IOK detections were recorded for this scan.

Yource (yource.cc / yource.cc)

Unknown

Technology · 4/5/2026

Summary

The page presents the Yource brand and branding on the domain yource.cc. However, the domain appears to be a plausible but non-official domain (yource vs yource.cc typo in hostname) with off-domain API endpoints and multiple tracking scripts. The page includes a login-like antibot form endpoint and reCAPTCHA integrations, but there is no clear credential harvesting form on static HTML. Evidence suggests potential impersonation signals through off-domain submissions and heavy third-party tracking, but the page currently does not show a direct credential theft prompt on the visible UI. Further investigation is needed to determine if the site is impersonating a legitimate service or a benign marketing site with tracking integrations.

Evidence Summary

▸Observed 2 capture stage(s); canonical stage is settled_render.

▸Off-domain submission or API endpoints observed: https://log.cookieyes.com/api/v1/log.

▸Distinctive asset clues: gtag.js, js_jAiayT60oWcknKlCmptxnYbMDXS7auw3pG-KqEyfbiQ.js, css_EdRB8AZeW_n15lLVUy9T76S5EFpl06Ci3nwjdUgyZuE.css, css_WCJ1c7CoOobCE_EgZzW8LfKZVQn-MK22PWiZ2LMqALk.css, flag_nl.svg, flag_fr.svg.

Capture

Stages: 2

Canonical: Settled Render

Changed: No

Credential Signals

Forms: 1

Password fields: 0

Late-stage login UI: No

Resource Signals

Resources: 105

Hosts: 20

Domains: 12

Suspicious Endpoints

hxxps://log[.]cookieyes[.]com/api/v1/log

hxxps://www[.]yource[.]cc/antibot

Off-Domain Posts

hxxps://log[.]cookieyes[.]com/api/v1/log

Attack Techniques (0)

Indicators of Compromise (0)

No specific IOCs identified in source

Risk AssessmentUsed in abuse reports

The scan shows signals that warrant caution but not definitive phishing. Strong indicators of third-party tracking and an antibot endpoint exist, along with a recaptcha iframe, suggesting anti-abuse measures. The presence of off-domain submission endpoints (log.cookieyes.com) and cross-origin analytics calls increases risk of data exposure or misuse if misconfigured. The final URL renders nl content and redirects from the apparent yource.cc domain, with multiple external scripts and an antibot POST endpoint, which could be part of a legitimate marketing site or a phishing page attempting to harvest data via hidden inputs. Recommend ongoing monitoring and domain reputation checks; no definitive credential-collection UI detected in static HTML, but SPA rendering could reveal forms at runtime.

Recommended Action

Monitor

Cross-Reference8

URL Intelligence