ScanMalware.com

Security Scan Report: cp.onicon.ru

Redirected to: https://cabinet.megagroup.ru/user/login/onicon

Submitted: Mar 14, 2026, 7:31:56 PMCompleted: Mar 14, 2026, 7:33:07 PMpubliccompleted
Loading additional data...

Summary

This website contacted 11 IPs in 2 countries across 13 domains to perform 1 HTTP transaction. The main domain is cabinet.megagroup.ru and was registered NaN years ago.

Submitted URL: https://cp.onicon.ru

Effective URL: https://cabinet.megagroup.ru/user/login/oniconRedirected

The Cisco Umbrella rank of the primary domain is #796,137 of the top 1 million websites

AI Security Verdict

Moderate Risk

Confidence: 80%

4
Risk Score

Login page with cross‑origin credential submission; no malware or IoCs, but caution advised.

Risk Factors
Cross‑origin credential submission to a different domain
Low Cisco Umbrella ranking for a site that presents a login form
Safety Factors
Domain age > 5 years
No malicious Indicators of Compromise
No JavaScript malware patterns detected
HTTPS connection (implied by URL scheme)
Standard login page without hidden fields or obfuscation
Domain age information unavailable

Details

Page Title

Вход в Onicon

Scan Type

public

Language

🇷🇺

Russian

(80% confidence)

Category

social media network

(95%)

Domain Information

Within the Russian country-code top-level domain (.ru), 'cp.onicon.ru' is registered, featuring subdomain 'cp'. The registrable portion 'onicon' spans 6 characters containing three vowels alongside three consonants. Segmentation suggests 2 words: on, icon. Average segment length settles at three characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://cp.onicon.ru

Page Load Overview

2.84s
Total Load Time
93
HTTP Requests
18
Domains
4.7 MB
Total Size

Language Analysis

Primary Language

🇷🇺Russian
Code: ru
Confidence:80%
Script:Cyrillic
Direction:ltr

Detection Details

Language Code:ru
Detection Confidence:80%
Script Type:Cyrillic
HTML Lang Attribute:ru
Text Length:4,207 chars
Detector Agreement:50%

Website Classification

Primary Category

social media network95% confidence
Type: spa
Method: ml+structural

All Detected Categories

social media network
95%
technology software
42%
blog personal website
32%
social_media
25%
forum
20%

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
13104.18.1.22United States
AS13335Cloudflare, Inc.
887.250.250.119Russia
AS13238YANDEX LLC
8185.32.57.37Russia
AS60357Megagroup.ru LLC
893.186.237.1Russia
AS47541LLC VK
8142.251.143.99United States
AS15169Google LLC
8185.32.57.56Russia
AS60357Megagroup.ru LLC
887.240.137.164Russia
AS47541LLC VK
8216.58.206.74United States
AS15169Google LLC
845.89.27.249Moscow, Moscow, Russia
AS50340JSC Selectel
8172.67.177.129United States
AS13335Cloudflare, Inc.
9311--

Detected Technologies6

X-UA-Compatible
100%
PasswordField
100%
jQuery
20%
Yandex.Metrika
20%
Unpkg
20%
Onicon
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T126241B6605A2094C13CBE185DB6B9B0833659C636D87CEA47EDC6E24CFEBDC9C45362C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:Xd7B66iathILKI/AL5+3ZY1kaHfYbvSoO8ZW2h2:XdyathILKIC5+oka/a/W2A

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:228329:UOM0RQRMAxBuroG2NYCEmIQmECMC0dRFwAfEiMUAw0BQSAoCSJIkoLQgJGAaEAAF+wql4QPsoaCOeYjIEAak1FiKTgsQCTEJ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:006260ffffff8181
Perceptual Hash:e2432fad9e2a433c
Difference Hash:c7c4cc29200b2b2b
Wavelet Hash:006060ffffff8181
Color Hash:#87c5c5

Other Hashes

Crop Resistant:c7c4cc29200b2b2b,c4b28a32328ab2c4,4acfc2c6cec6c6cc,d05050a28c4c0b0b,456b5cf3fbebe5d5,0000008000000000

Scan History

Scan history not available

Unable to load historical scan data