ScanMalware.com

Security Scan Report: usamil-hq.online

Submitted: Jan 30, 2026, 1:47:22 PMCompleted: Jan 30, 2026, 1:48:36 PMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 2 HTTP transactions. The main domain is usamil-hq.online and was registered NaN years ago.

Submitted URL: https://usamil-hq.online/care-package

AI Security Verdict

High Risk

Confidence: 92%

10
Risk Score

High‑risk phishing site with credential‑stealing forms on a brand‑impersonating, 9‑day‑old domain.

Risk Factors
Credential‑harvesting form with disguised password field
Hidden password field present in HTML
Unicode evasion used to obscure field labels
Very new, unranked domain impersonating a government/defence brand
Multiple forms collecting sensitive data on a 9‑day‑old domain
Domain age information unavailable

Details

Page Title

502 Bad Gateway

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

healthcare medical

(72%)

Domain Information

Within the modern generic top-level domain (.online), 'usamil-hq.online' is registered while skipping any subdomain. Count 9 characters in 'usamil-hq' split between 3 vowels and five consonants, notching 1 hyphen. It segments into 3 words: u, samil, hq. Median word length is 2 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://usamil-hq.online/care-package

Page Load Overview

1.40s
Total Load Time
16
HTTP Requests
4
Domains
516 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:3,575 chars
Detector Agreement:100%

Website Classification

Primary Category

healthcare medical72% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

healthcare medical
72%
government public service
71%
social media network
47%
blog personal website
34%
news media journalism
31%

Detected Features

Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
16176.123.0.55Chisinau, Chișinău Municipality, Moldova
AS200019Alexhost Srl
161--

Detected Technologies3

Engintron
40%
reCAPTCHA
30%
hCaptcha
30%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1A8F0B4ABDF12343B3E279571F4C31168CF640956EB8C25C28349111F72C904189B5FA9

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

12:kxV11bx0Aq48lIgr8IHTF83TF83TF83TF83TF83TFf:kvmAaLTuTuTuTuTuTF

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:538:AAAAAAAAAAABAQCAAAQAAAACAAAAAAIAAQAgAAAAAAAAAAgAAAEAAAgAACAgAAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAIAAAA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00ffffffffffffff
Perceptual Hash:a333333333333333
Difference Hash:0c00000000000000
Wavelet Hash:00ffffff00000000
Color Hash:#352dd2

Other Hashes

Crop Resistant:0c00000000000000

Scan History

Scan history not available

Unable to load historical scan data