ScanMalware.com

Security Scan Report: zinermailder.com

Submitted: Mar 14, 2026, 8:51:40 AMCompleted: Mar 14, 2026, 8:52:50 AMpubliccompleted
Loading additional data...

Summary

This website contacted 7 IPs in 1 country across 8 domains to perform 18 HTTP transactions. The main domain is zinermailder.com and was registered NaN years ago.

Submitted URL: https://zinermailder.com/e/

AI Security Verdict

Confirmed Scam

Confidence: 95%

9
Risk Score

Phishing login page on a brand‑new domain impersonating WordPress/Google – confirmed scam.

Risk Factors
New domain (<7 days) hosting a credential‑harvesting form
Password‑only field (suspicious credential harvesting pattern)
Brand impersonation/typosquatting of WordPress.com and Google
Unranked domain in Cisco Umbrella top 1M
Domain age information unavailable

Details

Page Title

Log In — WordPress.com

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(56%)

Domain Information

The domain 'zinermailder.com' uses the commercial generic top-level domain (.com) while skipping any subdomain. The second-level label 'zinermailder' is 12 characters long split between five vowels and seven consonants. Tokenizing the label suggests four words: zine, r, mail, der. The median word length lands at 3.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://zinermailder.com/e/

Page Load Overview

1.34s
Total Load Time
16
HTTP Requests
8
Domains
672 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:618 chars
Detector Agreement:50%

Website Classification

Primary Category

technology software56% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

technology software
56%
e-commerce shopping
35%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
4104.17.25.14United States
AS15169
2142.251.141.106United States
AS54113
250.6.251.107Ashburn, Virginia, United States
AS31898Oracle Corporation
2142.251.143.106United States
AS13335
2104.18.10.207United States
AS13335Cloudflare, Inc.
2151.101.2.137United StatesUnknown
2192.0.77.32San Francisco, California, United States
AS2635Automattic, Inc
167--

Detected Technologies8

X-UA-Compatible
100%
PasswordField
100%
JQueryv2.2.4
100%
Bootstrapv4.0.0
100%
Cloudflare
50%
jQuery CDN
20%
cdnjs
20%
Google Hosted Libraries
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T162F22AE426E453E4600387ECED3650167A5EA8FFEB448790F7AC8ED4AF915E5C81A8C4

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:KonE6nIxh+VsXXg4iNjWaXvKt0PH74nDYgqGH0JfKRG7qaXYyOvdi+Y:KonaX+qngtJbvKi8nDDH0gG7LOvdc

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:34346:BNMLIMDWkWwWOB4GIlWUwYGGIgYLEwqFJYEAwEDLCEF5ASD4YMQQBBwMxBkCjOlBB2AYYmC0AgqWGwCAPSMJXDgpHQSIKIIh

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:67e7f7c3c7f7ffff
Perceptual Hash:b332c6c71999cccc
Difference Hash:8c4d649e1c681000
Wavelet Hash:66e7c3c3c0e0f0f0
Color Hash:#d2799a

Other Hashes

Crop Resistant:8c4d649e1c681000

Scan History

Scan history not available

Unable to load historical scan data