Security Scan Report: vormita-gld-lormora-p8t1dk93.pages.dev

Redirected to:
https://www.facebook.com/
Site favicon
Submitted: Jul 11, 2026, 11:50:42 PMCompleted: Jul 11, 2026, 11:54:42 PMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 2 countries across 4 domains to perform 12 HTTP transactions. The main domain is facebook.com and was registered NaN years ago.

Submitted URL: https://vormita-gld-lormora-p8t1dk93.pages.dev/

Effective URL: https://www.facebook.com/Redirected

AI Security Verdict

High Risk

Confidence: 84%

8
Risk Score

The site impersonates Facebook/Instagram, hosts a login form on an unknown‑age pages.dev subdomain, and uses heavily obfuscated JavaScript, indicating a high‑risk phishing page.

Risk Factors
Credential harvesting on a non‑official domain
Brand impersonation of a major social media platform
Unknown subdomain creation date on a hosting platform
Critical JavaScript obfuscation
Unranked domain in Cisco Umbrella
Domain age information unavailable

Details

Page Title

Facebook

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

Domain 'vormita-gld-lormora-p8t1dk93.pages.dev' uses the developer-focused generic top-level domain (.dev) with subdomain 'vormita-gld-lormora-p8t1dk93'. Count 5 characters in 'pages' containing two vowels alongside 3 consonants. It segments into one word: pages. Average segment length settles at five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://vormita-gld-lormora-p8t1dk93.pages.dev/

Page Load Overview

6.22s
Total Load Time
12
HTTP Requests
4
Domains
N/A
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:2,086 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: spa
Method: structural

All Detected Categories

No categories detected

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
4172.66.44.75Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
2172.66.47.181Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
2157.240.0.6Frankfurt am Main, Hesse, Germany
AS32934Facebook, Inc.
2172.67.70.233Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
2157.240.0.35Frankfurt am Main, Hesse, Germany
AS32934Facebook, Inc.
125--

Detected Technologies3

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T107A45B05FA08C4771A3B0FF1D4A67907A75D080BDA8859E4D5AEBB7834C7BB8231B716

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

6144:U5TrZL8Lqt34qAqZjispVvE+GnIWnIjiHjiVNj0aiWJRmkRhznaHDU9nuqRcrnQn:eiqtI7AP

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:484250:BmJRhYGEQQRaoQKD5BjlQIUZmJAiBCBW+DQVBg5jiQKUEFTBh4cvkYBoKMKRGSmylIAAXgCEAITEoiYCCaMKNkAEB0kTigEI

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:031d3d3c3c3d1d01
Perceptual Hash:8e1b70267126fd1d
Difference Hash:5f7961697961e18f
Wavelet Hash:033d3d3c3d3d1f01
Color Hash:#6ce098

Scan History

Scan history not available

Unable to load historical scan data