ScanMalware.com

Security Scan Report: service-assistance-cliente-info.surge.sh

Redirected to: https://service-assistance-cliente-info.surge.sh/pages/region.html

Site favicon
Submitted: Oct 27, 2025, 5:06:01 AMCompleted: Oct 27, 2025, 5:06:48 AMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 23 HTTP transactions. The main domain is service-assistance-cliente-info.surge.sh.

Submitted URL: https://service-assistance-cliente-info.surge.sh/

Effective URL: https://service-assistance-cliente-info.surge.sh/pages/region.htmlRedirected

AI Security Verdict

High Risk

Confidence: 92%

9
Risk Score

High‑risk phishing site impersonating Crédit Agricole; avoid and report.

Risk Factors
Brand impersonation of Crédit Agricole on an unranked, newly registered domain
Google Safe Browsing social engineering detection
Domain age is 0 days (newly created) and not in Cisco Umbrella top 1M
Page displays banking‑related messages (logout, re‑login) to lure credentials
Hosted on surge.sh, a generic static‑site service, not an official bank domain
Domain age information unavailable

Details

Page Title

Accès à votre caisse régionale - Crédit Agricole

Scan Type

public

Language

🇫🇷

French

(80% confidence)

Category

legitimate website

(33%)

Domain Information

Domain 'service-assistance-cliente-info.surge.sh' uses the .sh country-code top-level domain, featuring subdomain 'service-assistance-cliente-info'. The second-level label 'surge' is 5 characters long containing two vowels alongside three consonants. Breaking it apart gives one word: surge. 'surge' is most common in Portuguese usage. You will also see it in Portuguese (Brazil) and English contexts. Overall, 'service-assistance-cliente-info.surge.sh' reads as Portuguese with single-word simplicity.

Screenshot

Security scan screenshot of https://service-assistance-cliente-info.surge.sh/

Page Load Overview

8.68s
Total Load Time
23
HTTP Requests
1
Domains
665 KB
Total Size

Language Analysis

Primary Language

🇫🇷French
Code: fr
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:fr
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:fr
Text Length:13,488 chars
Detector Agreement:100%

Website Classification

Primary Category

legitimate website33% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

legitimate website
33%
other
29%
forum
25%

Detected Features

Search
Comments

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
23188.166.132.94Amsterdam, North Holland, Netherlands
AS14061DIGITALOCEAN-ASN
231--

Detected Technologies4

X-UA-Compatible
100%
Java
50%
Adobe Experience Manager
30%
jQuery
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1D514733190F0053A427FB2C2A2649B126EABD70FC94E56904AA44BE56FF1D317E9F31D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:vaLaiafZy7Suv2LxIiObDauFfIM4poD8Z/AKWXR1hV+RQM/kfK0O2jvotaMMl6vC:V56QxgD

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:201932:OBogJGA4GAsOCCgUgMkRcAAFgrCiAYAEYSALjxIyD4QEEkQAAFY0VgiOC8NARIZIFgmoS0AgSlQ0ACSMQDAUJRhQ+ICTI8EA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ff0f0f0f0f0f0fff
Perceptual Hash:b1f1c616ce13c4d5
Difference Hash:b89b9b9b9b9a9af0
Wavelet Hash:3e0f0b090f0f0f3f
Color Hash:#862d30

Other Hashes

Crop Resistant:b89b9b9b9b9a9af0,9c3c3abbf7e78eee,d3d1c4d6c661c0cc,8721818609298b0f

Scan History

Scan history not available

Unable to load historical scan data