ScanMalware.com

Security Scan Report: prismaonline.propay.be

Redirected to:
https://prismaonline.propay.be/Logon/
Submitted: Apr 18, 2026, 2:41:54 PMCompleted: Apr 18, 2026, 2:43:05 PMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 1 HTTP transaction. The main domain is prismaonline.propay.be and was registered NaN years ago.

Submitted URL: https://prismaonline.propay.be

Effective URL: https://prismaonline.propay.be/Logon/Redirected

The Cisco Umbrella rank of the primary domain is #865,487 of the top 1 million websites

AI Security Verdict

Moderate Risk

Confidence: 82%

5
Risk Score

The site hosts a login form with disguised password fields and Unicode evasion on a low‑ranked domain, indicating credential phishing.

Risk Factors
Disguised password field
Unicode evasion in form inputs
Low Cisco Umbrella ranking
Presence of a login form on a domain not associated with a known brand
Safety Factors
Domain age > 24 years (well‑established)
No malicious JavaScript or YARA matches
No network IDS alerts
No external credential exfiltration observed
Established domain (9067 days old) with no strong malicious indicators — risk clamped from 7 to 5
Domain age information unavailable

Details

Page Title

Eservices | Login

Scan Type

public

Language

🇺🇸

English

(53% confidence)

Category

technology software

(60%)

Domain Information

You're looking at domain 'prismaonline.propay.be' on the Belgian country-code top-level domain (.be) and includes subdomain 'prismaonline'. The registrable portion 'propay' spans 6 characters with 2 vowels and 4 consonants. Tokenizing the label suggests two words: pro, pay. Median word length comes out to 3 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://prismaonline.propay.be

Page Load Overview

1.19s
Total Load Time
21
HTTP Requests
1
Domains
284 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:53%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:53%
Script Type:Latin
Text Length:564 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software60% confidence
Type: webapp
Method: ml+structural

All Detected Categories

technology software
60%
documentation technical
33%

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
21212.123.0.149Antwerp, Flanders, Belgium
AS6848Telenet BV
211--

Detected Technologies4

PasswordField
100%
JQueryv3.6.0
100%
ASP_NET
100%
Microsoft ASP.NET
30%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T11A423F1028FA987351A289D2B5A5DF1B2EC0D217CA0B490837FC8FD51FE7D97AC23165

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

96:yoQc0cweeC6mdp/V8KrIycpyLKQFVO60NpLnUSNWLM0c8RLs6bP1Mp1YsPpG:yodeHONGK8yc8LKQ7OOzE8RvpMp1Yp

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:12180:BZ5AERA4ADBBAcVUqUAIAVQkNAcIhD0JNK1SMGYMCIlRyadBiuBHIUxy3YlzHCnC8pICUMEIQBgwgQIAUAAQhgSKqVoBEAC5

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:e7e7ffffffff0000
Perceptual Hash:e3b663b71e4d8448
Difference Hash:0c0c161609040303
Wavelet Hash:c2e3ffffff000000
Color Hash:#6c8fe0

Other Hashes

Crop Resistant:0c0c161609040303

Scan History

Scan history not available

Unable to load historical scan data