Security Scan Report: draveta-gld-lormora-r2t5hp84.pages.dev

Site favicon
Submitted: Jul 4, 2026, 12:45:27 AMCompleted: Jul 4, 2026, 12:48:20 AMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 1 country across 2 domains to perform 2 HTTP transactions. The main domain is draveta-gld-lormora-r2t5hp84.pages.dev and was registered NaN years ago.

Submitted URL: http://draveta-gld-lormora-r2t5hp84.pages.dev/

AI Security Verdict

Low Risk

Confidence: 72%

3
Risk Score

No malicious forms or impersonation detected, but unknown age and heavily obfuscated JavaScript warrant caution.

Risk Factors
Unknown subdomain creation date
Unranked domain (not in Cisco Umbrella top 1M)
Heavy JavaScript obfuscation (charcode manipulation, excessive concatenation, base64 encoding)
Circular redirect pattern
Safety Factors
No forms collecting credentials or payment data
No external links or cross‑origin network calls
No Indicators of Compromise matches
No YARA malware detections
No network IDS alerts
Verdict cited a credential/login form, but DOM analysis found no password field (real or disguised) or payment field, and no other hard signal — credential-phishing framing unsupported; risk adjusted from 4 to 3
Domain age information unavailable

Details

Page Title

draveta-gld-lormora-r2t5hp84.pages.dev

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(75%)

Domain Information

You're looking at domain 'draveta-gld-lormora-r2t5hp84.pages.dev' on the developer-focused generic top-level domain (.dev); it also runs on subdomain 'draveta-gld-lormora-r2t5hp84'. Count 5 characters in 'pages' containing two vowels alongside three consonants. Breaking it apart gives 1 word: pages. Median word length is five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://draveta-gld-lormora-r2t5hp84.pages.dev/

Page Load Overview

8.12s
Total Load Time
3
HTTP Requests
1
Domains
N/A
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:810 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software75% confidence
Type: static
Method: ml+structural

All Detected Categories

technology software
75%
documentation technical
49%
adult content
38%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2188.114.96.3Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
1104.18.94.41Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
32--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T10D048E77329A063986558498F05B43099F21B543F50AC8BC79BCBAD8BFDED06107BB78

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:2/Qho9PKBb9Js3q9Jzbs6tlg1ySBKwdQ9gcoIsP+2bMy8Old/:3hoC9JSqzzbs6okSjggcpsW2eAB

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:188047:AEJAIRfSCgoURQfqggRwEyQA4IEANyENBCEBGHQRQOyjSU27MUA0kADBoAscgkQDBxoAgQ8NBAGEgI8vhlWxIQAK1A0ZYCZo

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffc7c7c3d3ffffff
Perceptual Hash:b1339acccc933365
Difference Hash:00181c1616000000
Wavelet Hash:ffdfc3c700303030
Color Hash:#ac8853

Other Hashes

Crop Resistant:00181c1616000000

Scan History

Scan history not available

Unable to load historical scan data