ScanMalware.com

Security Scan Report: xn--12cail2gbab4czabnj8c6bjcg0aan4gcl9dg8a5a6c5nkag4e4ivarcg.com

Site favicon
Submitted: Feb 12, 2026, 8:05:15 AMCompleted: Feb 12, 2026, 8:11:21 AMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 3 HTTP transactions. The main domain is xn--12cail2gbab4czabnj8c6bjcg0aan4gcl9dg8a5a6c5nkag4e4ivarcg.com and was registered NaN years ago.

Submitted URL: https://xn--12cail2gbab4czabnj8c6bjcg0aan4gcl9dg8a5a6c5nkag4e4ivarcg.com/

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

New domain with hidden password fields and login form; classified as confirmed phishing scam.

Risk Factors
Domain age less than 7 days
Credential harvesting form on brand‑new domain
Hidden password field
Unranked/low‑reputation domain
Domain age information unavailable

Details

Page Title

ร้านกาแฟนีออนแห่งนี้ให้ความรู้สึกเหมือ.com

Scan Type

public

Language

🇮🇩

ID

(80% confidence)

Category

entertainment media

(92%)

Domain Information

The domain name 'xn--12cail2gbab4czabnj8c6bjcg0aan4gcl9dg8a5a6c5nkag4e4ivarcg.com' uses the commercial generic top-level domain (.com) while skipping any subdomain. The registrable portion 'xn--12cail2gbab4czabnj8c6bjcg0aan4gcl9dg8a5a6c5nkag4e4ivarcg' spans 60 characters holding twelve vowels versus 31 consonants, along with 15 digits and two hyphens. Word splitting yields 38 words: xn, 12, c, ail, 2, gba, b, 4, cz, abn, j, 8, c, 6, bj, cg, 0, a, an, 4, gcl, 9, d, g, 8, a, 5, a, 6, c, 5, nk, ag, 4, e, 4, ivar, cg. Expect one character per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://xn--12cail2gbab4czabnj8c6bjcg0aan4gcl9dg8a5a6c5nkag4e4ivarcg.com/

Page Load Overview

90.13s
Total Load Time
230
HTTP Requests
5
Domains
2.2 MB
Total Size

Language Analysis

Primary Language

🇮🇩Indonesian
Code: id
Confidence:80%
Script:Unknown
Direction:ltr

Detection Details

Language Code:id
Detection Confidence:80%
Script Type:Unknown
HTML Lang Attribute:id
Text Length:826 chars
Detector Agreement:75%

Website Classification

Primary Category

entertainment media92% confidence
Type: spa
Method: ml+structural

All Detected Categories

entertainment media
92%
gambling betting
87%
finance banking
84%
cryptocurrency blockchain
73%
technology software
70%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
198172.67.179.151United States
AS13335Cloudflare, Inc.
2301--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T157048F77329A063986558498F05B53099F20B143F506C8BCB9BCBAD9BFDED06107BB78

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:tfQho9PKBb9Js3q9Jzbs6tlg3SBKwdQWgceIszM2bMy8Old2:ahoC9JSqzzbs6o3Sj3gcrsY2eAk

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:184981:LEWHAOgMMJyRCJlIGEWGMqZ1EAgAAQCkAImFIVeSB0sApRAtgwNgAiMUGIAtYRIDExQhGU4gAkuKLoXCCCgYIQGw8DiKBCEM

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffcfc3c7ffffffff
Perceptual Hash:b131cccccc633373
Difference Hash:00181c1400000000
Wavelet Hash:3f1f030f00000000
Color Hash:#ac5d53

Other Hashes

Crop Resistant:00181c1400000000

Scan History

Scan history not available

Unable to load historical scan data