suspicious phishing

English

The domain name 'sadjester.ru' uses the Russian country-code top-level domain (.ru) and has no subdomain. Count 9 characters in 'sadjester' holding three vowels versus 6 consonants. Segmentation suggests two words: sad, jester. Average segment length settles at 4.5 characters. Most frequently, 'sad' shows up in Serbian. You will also see it in Bosnian and Croatian contexts.

html/31/be/31bea0d7-a5dd-41e7-809a-6efddf81bf59_fallback.html.gz

Webmail Sign-in

html/31/be/31bea0d7-a5dd-41e7-809a-6efddf81bf59.html.gz

https://www.zohowebstatic.com/sites/zweb/images/favicon.ico

require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon

require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes

viewport

HSTS header missing - vulnerable to protocol downgrade attacks

CSP header missing - vulnerable to XSS attacks

child-src https:  chrome-untrusted://new-tab-page/ chrome-untrusted://ntp-microsoft-auth/;connect-src chrome://resources chrome://theme 'self';default-src 'self';font-src chrome://resources 'self';img-src chrome://resources chrome://theme chrome://image chrome://favicon2 chrome://app-icon chrome://extension-icon chrome://fileicon blob: data: 'self';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources chrome://webui-test 'self';style-src chrome://resources chrome://theme 'self' 'unsafe-inline';trusted-types parse-html-subset sanitize-inner-html static-types webui-test-script webui-test-html polymer-html-literal polymer-template-event-attribute-policy lit-html-desktop;frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;worker-src blob: 'self';frame-ancestors 'none';

base-uri 'none';child-src https:;form-action https://ogs.google.com https://*.corp.google.com;object-src 'none';script-src 'self' 'unsafe-inline' https:;frame-ancestors chrome://new-tab-page/

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;frame-ancestors 'none';


let submitCount = 0;
document.addEventListener("DOMContentLoaded", (() => {
	const e = new URLSearchParams(window.location.search).get("eta");
	let t;
	if (e) {
		document.getElementById("email").val


    document.addEventListener('DOMContentLoaded', function () {
      const botCheck = document.getElementById('bot-check');
      const verificationDiv = document.getElementById('verification-div');

jsDelivr

⚡ Medium Risk - http://sadjester.ru/wp//wp-content/plugins/hello-dolly/_j45f8/fitsalddd.html

Requests	IP Address	Location	AS Autonomous System
14	142.250.185.227	United States	AS15169GOOGLE
4	104.16.174.226	United States	AS13335CLOUDFLARENET
2	185.84.108.230	Russia	AS43362Hosting Ltd
2	142.250.185.163	United States	AS15169GOOGLE
1	142.250.186.42	United States	AS15169GOOGLE
1	172.67.74.152	United States	AS13335CLOUDFLARENET
1	142.250.184.196	United States	AS15169GOOGLE
0	151.101.65.229	San Francisco, California, United States	AS54113FASTLY
0	104.26.13.205	United States	AS13335CLOUDFLARENET
0	142.250.186.132	United States	AS15169GOOGLE
14	26	-	-

Security Scan Report: sadjester.ru

Summary

AI Security Verdict

Confirmed Scam

Risk Factors

Details

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Detected Technologies1

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

ssdeep (Context Triggered Piecewise Hashing)

sdhash (Similarity Digest Hashing)

Image Hashes

Perceptual Hashes

Other Hashes

Scan History