Security Scan Report: new-rxjkgsrbiih180.com

Redirected to: https://new-rxjkgsrbiih180.com/login

Site favicon
Submitted: Dec 29, 2025, 2:40:35 PMCompleted: Dec 29, 2025, 2:42:10 PMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 2 countries across 2 domains to perform 18 HTTP transactions. The main domain is new-rxjkgsrbiih180.com and was registered NaN years ago.

Submitted URL: https://new-rxjkgsrbiih180.com/login.php

Effective URL: https://new-rxjkgsrbiih180.com/loginRedirected

AI Security Verdict

Confirmed Scam

Confidence: 96%

10
Risk Score

Confirmed phishing scam; high confidence of malicious intent

Risk Factors
Newly registered domain (<7 days)
Credential harvesting pattern (password field without username)
Presence of login form on untrusted domain
Domain age information unavailable

Details

Page Title

Login

Scan Type

public

Language

🇺🇸

English

(66% confidence)

Category

finance banking

(34%)

Domain Information

Within the commercial generic top-level domain (.com), 'new-rxjkgsrbiih180.com' is registered while skipping any subdomain. Count 18 characters in 'new-rxjkgsrbiih180' containing three vowels alongside eleven consonants, notching three digits and one hyphen. Splitting it apart reveals seven words: new, r, xj, kgs, rbi, ih, 180. Median word length is 3 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://new-rxjkgsrbiih180.com/login.php

Page Load Overview

11.95s
Total Load Time
21
HTTP Requests
2
Domains
373 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:66%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:66%
Script Type:Latin
Text Length:106 chars
Detector Agreement:100%

Website Classification

Primary Category

finance banking34% confidence
Type: dynamic
Method: ml+structural+ocr_tiebreaker

All Detected Categories

finance banking
34%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
6124.220.203.60China
5118.25.42.241China
5104.21.48.233United States
AS13335CLOUDFLARENET
5172.67.188.88United States
AS13335CLOUDFLARENET
214--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1E652755178B20847281395A427EA5B093969D6338289DF147FFC272C8FC7BD56CBBB18

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:tpOFR7ERDoNYakmWONLPvfh2ed7A7z+68tE9daJYbuZkJ7LKgYz6FULDOp3LMbI9:t8FFnFPvfh2wOh56DOp3LJK+bz

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:14049:CoREIgCgFAA4O6QcAMi1jlHVQ6iQBQWFAFwYCQSNGjSRAGRm/LBAhHAQRUQSF4A0GkHpBlIB7FUImISAQTuAYNYMIAAY4hSh

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0000ffffff000000
Perceptual Hash:8c8c2e2eaee6c4f2
Difference Hash:e75390c24d800000
Wavelet Hash:030bffffff040000
Color Hash:#703a78

Scan History

Scan history not available

Unable to load historical scan data