ScanMalware.com

Security Scan Report: design-system-kvm-xlr.pages.dev

Site favicon
Submitted: Dec 10, 2025, 9:44:25 PMCompleted: Dec 10, 2025, 9:47:01 PMpubliccompleted
Loading additional data...

Summary

This website contacted 12 IPs in 2 countries across 4 domains to perform 11 HTTP transactions. The main domain is design-system-kvm-xlr.pages.dev.

Submitted URL: https://design-system-kvm-xlr.pages.dev/patterns/

AI Security Verdict

Confirmed Scam

Confidence: 95%

9
Risk Score

Confirmed phishing site impersonating GitHub on a brand‑new unranked domain.

Risk Factors
Brand impersonation/typosquatting
Very new domain (<90 days) mimicking a known brand
Unranked domain with low reputation
Domain age information unavailable

Details

Page Title

Patterns - Design System

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

government public service

(50%)

Domain Information

The domain 'design-system-kvm-xlr.pages.dev' uses the developer-focused generic top-level domain (.dev) with subdomain 'design-system-kvm-xlr'. The core label 'pages' covers 5 characters holding 2 vowels versus three consonants. Tokenizing the label suggests 1 word: pages. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://design-system-kvm-xlr.pages.dev/patterns/

Page Load Overview

1.30s
Total Load Time
11
HTTP Requests
4
Domains
47 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:690 chars
Detector Agreement:75%

Website Classification

Primary Category

government public service50% confidence
Type: static
Method: ml+structural

All Detected Categories

government public service
50%
technology software
39%
documentation technical
37%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
11104.16.174.226United States
AS13335CLOUDFLARENET
0142.250.186.131United States
AS15169GOOGLE
0172.66.47.72United States
AS13335CLOUDFLARENET
0172.66.44.184United States
AS13335CLOUDFLARENET
0142.250.186.170United States
AS15169GOOGLE
02606:4700:310c::ac42:2f48United States
AS13335CLOUDFLARENET
02a00:1450:4001:82b::200aFrankfurt am Main, Hesse, Germany
AS15169GOOGLE
02606:4700:310c::ac42:2cb8United States
AS13335CLOUDFLARENET
0104.16.175.226United States
AS13335CLOUDFLARENET
02a00:1450:4001:80c::2003Frankfurt am Main, Hesse, Germany
AS15169GOOGLE
1112--

Detected Technologies3

HTTP/3
40%
Cloudflare Bot Management
40%
Cloudflare
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T19D03C9ED27F416F0B846A3FDEA2555D5790774AB6D408EA8F36C0D28BF9116CCD0B882

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:d5Mal+r3DXONfYiFBAdOaj/c8eV8AANTlMylez3rX+NfYC9BAd+a7+YEYjmt:d3i0fHFBIrls8AAhDCkff9BgahYj8

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:38021:0FE5GELBhaKAMBIDAHIaUAEQ1SQQ8S0UGEMyGDlYYJoqIAJt4RA0jwaC/gAkAJKB2hDQVANIEYCjcDCDkgFAAGBoAgCkHKkK

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0000ffffffffff99
Perceptual Hash:bd6c0e593e6391c1
Difference Hash:3b22105e1e186231
Wavelet Hash:0000ffefffefa000
Color Hash:#1f938c

Other Hashes

Crop Resistant:3b22105e1e186231

Scan History

Scan history not available

Unable to load historical scan data