ScanMalware.com

Security Scan Report: gilded-figolla-a20e11.netlify.app

Submitted: Oct 30, 2025, 9:06:59 AMCompleted: Oct 30, 2025, 9:07:46 AMpubliccompleted
Loading additional data...

Summary

This website contacted 16 IPs in 4 countries across 6 domains to perform 16 HTTP transactions. The main domain is gilded-figolla-a20e11.netlify.app.

Submitted URL: https://gilded-figolla-a20e11.netlify.app/hr_aruba.html

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

Phishing page harvesting credentials on a newly created Netlify domain

Risk Factors
Social engineering detection by Google Safe Browsing
Brand impersonation (webmail login) on a non‑official, unranked domain
Presence of password field despite no HTML form detected (likely rendered via JavaScript)
New/unknown domain age suggesting recent creation
Domain age information unavailable

Details

Page Title

N/A

Scan Type

public

Language

🇺🇸

English

(50% confidence)

Category

unknown

(0%)

Domain Information

The domain 'gilded-figolla-a20e11.netlify.app' uses the application-focused generic top-level domain (.app); it also runs on subdomain 'gilded-figolla-a20e11'. The core label 'netlify' covers 7 characters with 2 vowels and 5 consonants. Word splitting yields 3 words: net, li, fy. Average segment length settles at 2 characters. 'neto' most often appears in Esperanto. Usage also turns up in Bosnian and Serbian contexts.

Screenshot

Security scan screenshot of https://gilded-figolla-a20e11.netlify.app/hr_aruba.html

Page Load Overview

19.15s
Total Load Time
16
HTTP Requests
6
Domains
393 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:50%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:50%
Script Type:Latin
Text Length:591 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: static
Method: structural

All Detected Categories

No categories detected

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1104.16.175.226United States
AS13335CLOUDFLARENET
1103.185.74.50India
AS149545Hosting Home
135.157.26.135Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
1142.250.185.234United States
AS15169GOOGLE
162.149.158.90Arezzo, Tuscany, Italy
AS31034Aruba S.p.A.
1104.16.174.226United States
AS13335CLOUDFLARENET
163.176.8.218Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
1172.217.18.3United States
AS15169GOOGLE
1142.250.186.35United States
AS15169GOOGLE
12a00:1450:4001:812::200aFrankfurt am Main, Hesse, Germany
AS15169GOOGLE
1616--

Detected Technologies3

PasswordField
100%
Netlify
40%
HSTS
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1E5D10F3794288A779A034AD831BA9B2B7281DB64FF83244412F687DC23EECC1ED1511F

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

96:MfOPWMUMZiWgUFzfdRaMBmakmwP9zffSRajp0fM1M6QMFqN/2/bxh3q55x:MfOP2K2fxjp/Rxe

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:6523:iPAEIEpoGMgCFGFahkqgwAAISggCIkgAMEJENgAUAECGQsCAvFDcABwhqgBoAAWAQCZBB8EAsBDrCEDU2BGABSDgpAgVWICD

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffcf878783cfffff
Perceptual Hash:b838c7cdccc63139
Difference Hash:051e1b3b3b1b000c
Wavelet Hash:ff8783838187ff00
Color Hash:#ae87c5

Other Hashes

Crop Resistant:051e1b3b3b1b000c,a3cdedfcfae96d44,b6323232525a5a48

Scan History

Scan history not available

Unable to load historical scan data