Security Scan Report: ail-rosenheim-marion-knauf-bc9143473673.herokuapp.com

Site favicon
Submitted: Jul 9, 2026, 12:45:08 AMCompleted: Jul 9, 2026, 12:46:20 AMpubliccompleted
Loading additional data...

Summary

This website contacted 7 IPs in 1 country across 4 domains to perform 15 HTTP transactions. The main domain is ail-rosenheim-marion-knauf-bc9143473673.herokuapp.com and was registered NaN years ago.

Submitted URL: https://ail-rosenheim-marion-knauf-bc9143473673.herokuapp.com/

AI Security Verdict

Moderate Risk

Confidence: 82%

5
Risk Score

The site impersonates WhatsApp on a Heroku subdomain with unknown age and no reputation, indicating a high‑risk phishing or scam page.

Risk Factors
Brand impersonation of WhatsApp
Unknown subdomain creation date
Unranked domain reputation
Hosted on a generic cloud platform subdomain
Safety Factors
Verdict cited a credential/login form, but DOM analysis found no password field (real or disguised) or payment field, and no other hard signal — credential-phishing framing unsupported; risk adjusted from 7 to 3
Domain age information unavailable

Details

Page Title

WhatsApp

Scan Type

public

Language

🇺🇸

English

(59% confidence)

Category

social media network

(68%)

Domain Information

The domain 'ail-rosenheim-marion-knauf-bc9143473673.herokuapp.com' uses the commercial generic top-level domain (.com); it also runs on subdomain 'ail-rosenheim-marion-knauf-bc9143473673'. Count 9 characters in 'herokuapp' with 4 vowels and 5 consonants. Segmentation suggests three words: he, roku, app. Median word length is 3 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://ail-rosenheim-marion-knauf-bc9143473673.herokuapp.com/

Page Load Overview

3.45s
Total Load Time
15
HTTP Requests
4
Domains
807 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:59%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:59%
Script Type:Latin
Text Length:194 chars
Detector Agreement:100%

Website Classification

Primary Category

social media network68% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

social media network
68%
technology software
50%
documentation technical
36%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
3142.251.13.95Google · CDNUnited States
AS15169Google LLC
2104.17.208.5Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
23.219.96.23Aws · CLOUDAshburn, Virginia, United States
AS14618Amazon.com, Inc.
223.22.144.165Aws · CLOUDAshburn, Virginia, United States
AS14618Amazon.com, Inc.
2104.17.207.5Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
223.22.52.7Aws · CLOUDAshburn, Virginia, United States
AS14618Amazon.com, Inc.
2192.178.183.95Google · CDNUnited States
AS15169Google LLC
157--

Detected Technologies5

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T13D22D825A26A2837412B10EEE963570E36A3834FD70A4C7477FC03E56FC9D65B5621C4

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:rMVu1PxsZB1xqwm57r3yypuQgGS9YGvoEy7:YYs2r3cFTg57

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:10109:OEEAAUoAJlQAOhFKUEBlcAQppAJaVkxBJCCAQ3UIESylIGEmAcAQcOVsRAHxQRgLrMwAv4JEAGGCIACUGG2wGHSjlaAB2MII

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:7ee3f3cfffffff00
Perceptual Hash:c545559414d55ded
Difference Hash:926a121402084a00
Wavelet Hash:422652c3ffff2b00
Color Hash:#87a2c5

Other Hashes

Crop Resistant:926a121402084a00

Scan History

Scan history not available

Unable to load historical scan data