ScanMalware.com

Security Scan Report: cex-x-secure.pages.dev

Redirected to: https://cex-x-secure.pages.dev/

Site favicon
Submitted: Nov 28, 2025, 4:11:14 AMCompleted: Nov 28, 2025, 4:13:47 AMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 1 country across 1 domain to perform 3 HTTP transactions. The main domain is cex-x-secure.pages.dev.

Submitted URL: http://cex-x-secure.pages.dev/

Effective URL: https://cex-x-secure.pages.dev/Redirected

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

Phishing site impersonating CEX to harvest credentials; high risk.

Risk Factors
Brand impersonation on an unranked, likely new domain
Login form collecting email/username and password
Hidden password field in HTML (potentially used to harvest credentials)
Domain age unknown but likely very recent
Unranked domain (not in top 1M) mimicking a well‑known cryptocurrency exchange
Domain age information unavailable

Details

Page Title

N/A

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

legitimate website

(46%)

Domain Information

You're looking at domain 'cex-x-secure.pages.dev' on the developer-focused generic top-level domain (.dev) and includes subdomain 'cex-x-secure'. Its registrable label 'pages' stretches across 5 characters holding two vowels versus three consonants. Splitting it apart reveals one word: pages. Expect 5 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://cex-x-secure.pages.dev/

Page Load Overview

0.21s
Total Load Time
3
HTTP Requests
1
Domains
N/A
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:3,488 chars
Detector Agreement:100%

Website Classification

Primary Category

legitimate website46% confidence
Type: webapp
Method: ml+structural

All Detected Categories

legitimate website
46%
malicious
42%
other
39%
suspicious phishing
39%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
3172.66.44.207United States
AS13335CLOUDFLARENET
2172.66.47.49United States
AS13335CLOUDFLARENET
02606:4700:310c::ac42:2ccfUnited States
AS13335CLOUDFLARENET
02606:4700:310c::ac42:2f31United States
AS13335CLOUDFLARENET
34--

Detected Technologies1

PasswordField
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T19802A80B92FA34421A43913177715796AB29801BA106DE6D3EBC915CEFD128986B339E

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:LkoRYBRUmK7XV/ANUMhVEvTieyJmknIBxYcvWwe/9TVpMozxC/:Lk4m4gcvWwe/9TVpMko

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:8444:BQyDYFGL8CClLmgKfDB8EpIms7wEEASgEYMaIrFgIYkALBCCU+ALkIgBaAOlWEAIqgMi6upGkoIIAMGiBqFBSInDlvtyIBgE

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0000007dffffffff
Perceptual Hash:aa0205ffd5603b2f
Difference Hash:ddfdfde17b7903e0
Wavelet Hash:00000000ffffffff
Color Hash:#b96ce0

Other Hashes

Crop Resistant:ddfdfde17b7903e0,bfccf8fffcfff979

Scan History

Scan history not available

Unable to load historical scan data