ScanMalware.com

Security Scan Report: newcredit.vip

Redirected to: https://sgroshi.com.ua/kabinet?partner=letmeads&subpartner=WMQ3DA&utm_source=letmeads&utm_medium=cps_st&utm_term=WMQ3DA&offer=st&clickid=MEBST385Y2YMZWMQ3DA17738885880363711556&utm_campaign=direct

Submitted: Mar 19, 2026, 2:49:45 AMCompleted: Mar 19, 2026, 2:51:15 AMpubliccompleted
Loading additional data...

Summary

This website contacted 10 IPs in 2 countries across 10 domains to perform 53 HTTP transactions. The main domain is sgroshi.com.ua and was registered NaN years ago.

Submitted URL: https://newcredit.vip/go/shg

Effective URL: https://sgroshi.com.ua/kabinet?partner=letmeads&subpartner=WMQ3DA&utm_source=letmeads&utm_medium=cps_st&utm_term=WMQ3DA&offer=st&clickid=MEBST385Y2YMZWMQ3DA17738885880363711556&utm_campaign=directRedirected

AI Security Verdict

Low Risk

Confidence: 92%

3
Risk Score

Site appears legitimate with no phishing or malware, though heavy JS obfuscation suggests caution.

Risk Factors
Highly obfuscated JavaScript (score 100)
Three‑step redirect chain from newcredit.vip to sgroshi.com.ua
Safety Factors
Well‑established domain age
No malicious Indicators of Compromise
No password, email, or payment fields
External resources are reputable (Google APIs, Cloudflare, DoubleClick, Liqpay)
Meta tags do not impersonate any major brand
Domain age information unavailable

Details

Bot Protection Detected

This website is protected by imperva bot protection. Our scanner was challenged or blocked during access.

Page Title

Вхід в ОК

Scan Type

public

Language

🇷🇺

Russian

(60% confidence)

Category

finance banking

(47%)

Domain Information

Within the .vip top-level domain, 'newcredit.vip' is registered. The second-level label 'newcredit' is 9 characters long holding three vowels versus 6 consonants. Breaking it apart gives 2 words: new, credit. Median word length comes out to 4.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://newcredit.vip/go/shg

Page Load Overview

3.06s
Total Load Time
55
HTTP Requests
14
Domains
1.1 MB
Total Size

Language Analysis

Primary Language

🇷🇺Russian
Code: ru
Confidence:60%
Script:Cyrillic
Direction:ltr

Detection Details

Language Code:ru
Detection Confidence:60%
Script Type:Cyrillic
HTML Lang Attribute:ru
Text Length:161 chars
Detector Agreement:67%

Website Classification

Primary Category

finance banking47% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

finance banking
47%
corporate
25%

Detected Features

OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
10104.17.25.14United States
AS13335Cloudflare, Inc.
545.223.234.62United States
AS19551Incapsula Inc
5172.67.206.71United States
AS13335Cloudflare, Inc.
5172.217.16.170United States
AS15169Google LLC
5142.250.186.40United States
AS15169Google LLC
5142.251.208.10United States
AS15169Google LLC
513.226.244.121UkraineUnknown
5142.251.140.163United States
AS15169Google LLC
5185.124.8.185Ukraine
AS200000Hosting Ukraine LTD
545.60.65.91United States
AS19551Incapsula Inc
5510--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T16483A473D451203FE26BC42AB5A1BA18712DC012D76F96FBCAD1712D96DE2D3227368C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:q1a8Mp/s0KWCU/4HGc0I1BHdwt1LSuV5o:qQHnXtk

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:81116:iBBN5AiJTSApPMeCgZCEQUBAgMUAEwxRsZYgIFjqDqyoAmJJ1XADBP4ABABRiHwCGRDiJJ1VIlApmIAdWppccjiGFSYhCYGA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00ffffffffffffff
Perceptual Hash:e363616961637359
Difference Hash:9668686814080000
Wavelet Hash:00273f2700000000
Color Hash:#90ac53

Other Hashes

Crop Resistant:6868686814000000,0001869696962681

Scan History

Scan history not available

Unable to load historical scan data