ScanMalware.com

Security Scan Report: txoag.app.box.com

Redirected to: https://txoag.account.box.com/login

Submitted: Mar 19, 2026, 11:40:33 PMCompleted: Mar 19, 2026, 11:41:42 PMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 2 countries across 4 domains to perform 19 HTTP transactions. The main domain is txoag.account.box.com and was registered NaN years ago.

Submitted URL: https://txoag.app.box.com

Effective URL: https://txoag.account.box.com/loginRedirected

The Cisco Umbrella rank of the primary domain is #2,863 of the top 1 million websitesTop 10K Site

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

Phishing page impersonating Texas Attorney General to harvest Box credentials; avoid and report.

Risk Factors
Brand impersonation of Texas Attorney General
Suspicious login form collecting credentials
Garble‑filled phishing text
Critical JavaScript obfuscation
Unusual subdomain on a legitimate brand domain
Domain age information unavailable

Details

Page Title

Box | Login

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

You're looking at domain 'txoag.app.box.com' on the commercial generic top-level domain (.com) with subdomain 'txoag.app'. Its registrable label 'box' stretches across 3 characters split between one vowel and two consonants. Word splitting yields 1 word: box. Expect 3 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://txoag.app.box.com

Page Load Overview

1.95s
Total Load Time
29
HTTP Requests
4
Domains
679 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:681 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: dynamic
Method: structural

All Detected Categories

No categories detected

Detected Features

Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1123.52.181.12Frankfurt am Main, Hesse, Germany
AS16625Akamai Technologies, Inc.
9104.16.144.15United States
AS13335Cloudflare, Inc.
974.112.186.157United States
AS396982Google LLC
293--

Detected Technologies5

X-UA-Compatible
100%
Google Cloud
50%
HTTP/3
40%
HSTS
40%
Google Cloud CDN
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T12392866298C435760102D3F8FA352FB4E65F124BD740EE38F2BD151BAF91FA24A5241E

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:NZzEf8KWwnQrTckkAVApkZkraBDoM3+vGDRy7qKM9CeDbYdmUK9BArg6P1wVd+sX:NZof8N/rTckkAVApkZkraBD73+vGDRyu

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:21141:CosGkAMOACLhABAEIYA5MBopWZYEAaBCJw/DTwKSmcRkGWA0AEhdhNEEIBZggAAAQqJPYRcBBBQmD0AXfIBEwAAwCAAAIUAw

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:7effe7e7e7e7e7ff
Perceptual Hash:f3c0cc516672d9cc
Difference Hash:8008084d0c0c0c06
Wavelet Hash:3ca72424e4e4e4c0
Color Hash:#2dd296

Other Hashes

Crop Resistant:8008084d0c0c0c06

Scan History

Scan history not available

Unable to load historical scan data