ScanMalware.com

Security Scan Report: mailer-kjermjs.net

Submitted: Apr 3, 2026, 11:34:08 PMCompleted: Apr 3, 2026, 11:35:17 PMpubliccompleted
Loading additional data...

Summary

This website contacted 7 IPs in 1 country across 8 domains to perform 1 HTTP transaction. The main domain is mailer-kjermjs.net and was registered NaN years ago.

Submitted URL: https://mailer-kjermjs.net/w

AI Security Verdict

Confirmed Scam

Confidence: 95%

9
Risk Score

Phishing site impersonating WordPress.com login; new domain with credential‑only form – avoid and report.

Risk Factors
Brand impersonation of WordPress.com on a brand‑new, unranked domain
Password field without accompanying username/email field
Domain age < 7 days combined with a login form
Single credential‑only form with no legitimate purpose
Domain age information unavailable

Details

Page Title

Log In — WordPress.com

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(56%)

Domain Information

The domain name 'mailer-kjermjs.net' uses the network infrastructure generic top-level domain (.net) without a subdomain. The core label 'mailer-kjermjs' covers 14 characters with 4 vowels and 9 consonants, along with 1 hyphen. Tokenizing the label suggests 4 words: mailer, kj, erm, js. Average segment length settles at 2.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://mailer-kjermjs.net/w

Page Load Overview

1.89s
Total Load Time
17
HTTP Requests
8
Domains
672 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:618 chars
Detector Agreement:50%

Website Classification

Primary Category

technology software56% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

technology software
56%
e-commerce shopping
35%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
5129.121.77.241Ashburn, Virginia, United States
AS31898Oracle Corporation
2142.251.13.95United States
AS15169Google LLC
2192.0.77.32San Francisco, California, United States
AS2635Automattic, Inc
2104.18.11.207United States
AS13335Cloudflare, Inc.
2151.101.130.137United States
AS31898
2104.17.25.14United States
AS13335Cloudflare, Inc.
2142.251.14.95United States
AS15169Google LLC
177--

Detected Technologies8

X-UA-Compatible
100%
PasswordField
100%
JQueryv2.2.4
100%
Bootstrapv4.0.0
100%
Cloudflare
50%
jQuery CDN
20%
cdnjs
20%
Google Hosted Libraries
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T162F22AE426E453E4600387ECED3650167A5EA8FFEB448790F7AC8ED4AF915E5C81A8C4

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:KonE6nIxh+VsXXg4iNjWaXvKt0PH74nDYgqGH0JfKRG7qaXYyOvdi+Y:KonaX+qngtJbvKi8nDDH0gG7LOvdc

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:34346:BNMLIMDWkWwWOB4GIlWUwYGGIgYLEwqFJYEAwEDLCEF5ASD4YMQQBBwMxBkCjOlBB2AYYmC0AgqWGwCAPSMJXDgpHQSIKIIh

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:67e7f7c3c7f7ffff
Perceptual Hash:b332c6c71999cccc
Difference Hash:8c4d649e1c681000
Wavelet Hash:66e7c3c3c0e0f0f0
Color Hash:#864c2d

Other Hashes

Crop Resistant:8c4d649e1c681000

Scan History

Scan history not available

Unable to load historical scan data