ScanMalware.com

Security Scan Report: api.powerups.club

Submitted: Nov 16, 2025, 9:00:10 AMCompleted: Nov 16, 2025, 9:01:23 AMpubliccompleted
Loading additional data...

Summary

This website contacted 28 IPs in 0 countries across 7 domains to perform 12 HTTP transactions. The main domain is api.powerups.club and was registered NaN years ago.

Submitted URL: https://api.powerups.club/external-share/attachments/YKnhCCQi8W7z4YHj

The Cisco Umbrella rank of the primary domain is #484,596 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 85%

8
Risk Score

Phishing page impersonating Microsoft, collects email addresses on a low‑ranked domain.

Risk Factors
Brand impersonation of a well‑known company on an unrelated, low‑rank domain
Credential harvesting form (email address) used to lure users
Low Cisco Umbrella ranking for a domain claiming a major brand
Domain age information unavailable

Details

Page Title

Secure Document Sharing | Your Company

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

download file sharing

(82%)

Domain Information

You're looking at domain 'api.powerups.club' on the membership-focused generic top-level domain (.club); it also runs on subdomain 'api'. Its registrable label 'powerups' stretches across 8 characters holding three vowels versus 5 consonants. Splitting it apart reveals two words: power, ups. The median word length lands at 4 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://api.powerups.club/external-share/attachments/YKnhCCQi8W7z4YHj

Page Load Overview

57.75s
Total Load Time
12
HTTP Requests
7
Domains
304 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:457 chars
Detector Agreement:100%

Website Classification

Primary Category

download file sharing82% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

download file sharing
82%
documentation technical
70%
technology software
65%
corporate business
50%
government public service
30%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
12216.24.57.7UnknownUnknown
0104.26.3.143UnknownUnknown
0104.16.80.73UnknownUnknown
0216.24.57.251UnknownUnknown
0188.114.97.3UnknownUnknown
0216.58.206.74UnknownUnknown
0104.17.24.14UnknownUnknown
0104.18.94.41UnknownUnknown
0142.250.186.74UnknownUnknown
02a00:1450:4001:82f::200aUnknownUnknown
1228--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1E263E76A65B300567C43E1E46BEBA7093635C083DE0EDD697ECD5204CFCE6A98CA3758

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:T/aEBVUUO7vwC3gg2GCMtSJhvImhmU3h+WbQ3UtMUYJksenI/+9u/Ttprfw:WJBggukdmhh3UUlYJkKm9KTfrfw

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:67042:MYBxmAgc6WEiQME1iAwvCgRrEuKgkApVMLScGBhiFgKWQBxh2OFOI7AFAiF4UZ8gDQAmJAgGgEAAwzSRaMLhBACDzxxdTTgo

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00fffff3f7ffc3c3
Perceptual Hash:e4cf311b4e649b31
Difference Hash:0a2a748494609696
Wavelet Hash:00c2fec2c6fec2c3
Color Hash:#4042bf

Other Hashes

Crop Resistant:0a2a748494609696,0000004040400080,0052ada9d9d22c00,0000000000000000

Scan History

Scan history not available

Unable to load historical scan data