ScanMalware.com

Security Scan Report: test.medhospafrica.com

Redirected to:
blob:https://rahkar.online/b4c82ed3-685c-4c20-8326-bd82a60f829f
Site favicon
Submitted: Feb 21, 2026, 8:20:37 PMCompleted: Feb 21, 2026, 8:21:56 PMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 3 HTTP transactions. The main domain is .

Submitted URL: https://test.medhospafrica.com/wp-includes/interactivity-api/cgi-enti/link.html

Effective URL: blob:https://rahkar.online/b4c82ed3-685c-4c20-8326-bd82a60f829fRedirected

AI Security Verdict

Confirmed Scam

Confidence: 92%

9
Risk Score

Phishing login page on a compromised WordPress site – do not enter credentials.

Risk Factors
Compromised WordPress site used for credential collection
Disguised password fields (type='text' with password placeholders)
Unicode evasion technique in form fields
Credential‑harvesting login form
Unranked, unknown‑age domain
Domain age information unavailable

Details

Page Title

test.medhospafrica.com

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

finance banking

(43%)

Domain Information

Domain 'test.medhospafrica.com' uses the commercial generic top-level domain (.com); it also runs on subdomain 'test'. Count 13 characters in 'medhospafrica' with five vowels and 8 consonants. Splitting it apart reveals four words: med, ho, sp, africa. Average segment length settles at 2.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://test.medhospafrica.com/wp-includes/interactivity-api/cgi-enti/link.html

Page Load Overview

1.21s
Total Load Time
8
HTTP Requests
5
Domains
377 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:1,940 chars
Detector Agreement:67%

Website Classification

Primary Category

finance banking43% confidence
Type: webapp
Method: ml+structural

All Detected Categories

finance banking
43%
adult content
39%
documentation technical
39%
social media network
32%
corporate business
31%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
8135.181.165.174Helsinki, Uusimaa, Finland
AS24940Hetzner Online GmbH
81--

Detected Technologies4

PasswordField
100%
WordPress
75%
Plesk
40%
Microsoft ASP.NET
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T197048F77329A063986558498F05B43099F20B143F506C9BCB9BCBAD9BFDED06107BB78

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:ofQho9PKBb9Js3q9Jzbs6tlg3SBKwdQWgceIszE2bMy8OldJ:jhoC9JSqzzbs6o3Sj3gcrsA2eAj

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:184645:SigTCQYpN8MQIAJJLBUQNGjPqimCAhWaAFeApLligAiaZg5FHjFAAh0qEshIiFIKIAQkgQ7RQIgQJi4FYi4GgUBEkAwiYGCA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffcfc3c7ffffffff
Perceptual Hash:b333cccccc233333
Difference Hash:00180c1c00000000
Wavelet Hash:ffdfc3c700000000
Color Hash:#a653ac

Other Hashes

Crop Resistant:00180c1c00000000

Scan History

Scan history not available

Unable to load historical scan data