ScanMalware.com

Security Scan Report: medigroup-crm.pages.dev

Site favicon
Submitted: May 14, 2026, 6:02:01 AMCompleted: May 14, 2026, 6:04:04 AMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 1 country across 2 domains to perform 9 HTTP transactions. The main domain is medigroup-crm.pages.dev and was registered NaN years ago.

Submitted URL: https://medigroup-crm.pages.dev/%7BorderInvoiceDoc%7D

AI Security Verdict

Moderate Risk

Confidence: 80%

5
Risk Score

The site shows strong signs of malicious URL manipulation and is hosted on an untrusted, newly‑created subdomain, warranting high risk.

Risk Factors
URL manipulation / circular redirect
Unknown subdomain age on a hosting platform
Unranked domain reputation
High JavaScript obfuscation score
Self‑branded site on an untrusted subdomain
Safety Factors
No credential or payment forms
No Indicators of Compromise matched
No JavaScript malware YARA patterns detected
No network IDS alerts
Meta tags match the site’s own brand (no impersonation)
Established domain (2080 days old) with no strong malicious indicators — risk clamped from 9 to 5
Domain age information unavailable

Details

Page Title

Medigroup CRM

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

healthcare medical

(77%)

Domain Information

The domain name 'medigroup-crm.pages.dev' uses the developer-focused generic top-level domain (.dev) and includes subdomain 'medigroup-crm'. The registrable portion 'pages' spans 5 characters with 2 vowels and 3 consonants. It segments into 1 word: pages. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://medigroup-crm.pages.dev/%7BorderInvoiceDoc%7D

Page Load Overview

3.84s
Total Load Time
7
HTTP Requests
2
Domains
615 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:63 chars
Detector Agreement:100%

Website Classification

Primary Category

healthcare medical77% confidence
Type: static
Method: ml+structural

All Detected Categories

healthcare medical
77%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
4104.17.24.14United States
AS13335Cloudflare, Inc.
3188.114.97.3United States
AS13335Cloudflare, Inc.
72--

Detected Technologies3

HTTP/3
40%
Cloudflare Bot Management
40%
Cloudflare
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1DFD5E721AD442834DBEE44B3F1DD57BDD68B4A035A5244E8B08EE55B3B70C5ADBC8F0A

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

24576:i8PaXwHab4NoXYPr+SxeKxbNN3CcPOgiPCX61jMgxKD7e:i8PaA6b4cSxeKxogiPCX6ZKD7e

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:2969310:QMCCFNLwgQHKnBCQbGwMMEpRRgdMUoAANgiBCwIIEsIExhXNUiYEiAAGjFJgNlFiYxAgbEB4IIGABAgkwQJLlCkxIJHcGFSA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0e061a1838386070
Perceptual Hash:cc983326768ddc8d
Difference Hash:fcecf0f0f0f0c0c0
Wavelet Hash:0f1e1e3c3c78f0f0
Color Hash:#b887c5

Other Hashes

Crop Resistant:a280a6a69a8a80b2,fcecf0f0f0f0c0c0

Scan History

Scan history not available

Unable to load historical scan data