ScanMalware.com

Security Scan Report: werknemer.loket.nl

Redirected to: https://werknemer.loket.nl/#/login?returnUrl=%2Fstart

Submitted: Mar 13, 2026, 5:17:58 AMCompleted: Mar 13, 2026, 5:19:14 AMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 3 countries across 5 domains to perform 19 HTTP transactions. The main domain is werknemer.loket.nl and was registered NaN years ago.

Submitted URL: https://werknemer.loket.nl

Effective URL: https://werknemer.loket.nl/#/login?returnUrl=%2FstartRedirected

The Cisco Umbrella rank of the primary domain is #308,381 of the top 1 million websites

AI Security Verdict

Moderate Risk

Confidence: 85%

4
Risk Score

Site appears legitimate, but the password‑only form is unusual; proceed cautiously.

Risk Factors
Password field without username field (potential credential harvesting pattern)
Safety Factors
Domain age > 10 years
No malicious Indicators of Compromise matches
No JavaScript malware detected
No cross‑origin credential exfiltration
Meta tags consistent with the service (no brand impersonation)
Domain age information unavailable

Details

Page Title

Werknemerloket − Altijd alles bij de hand als werknemer

Scan Type

public

Language

🇳🇱

Dutch

(34% confidence)

Category

government public service

(87%)

Domain Information

You're looking at domain 'werknemer.loket.nl' on the Dutch country-code top-level domain (.nl), featuring subdomain 'werknemer'. Count 5 characters in 'loket' containing 2 vowels alongside 3 consonants. It segments into two words: lok, et. Median word length is 2.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://werknemer.loket.nl

Page Load Overview

1.01s
Total Load Time
22
HTTP Requests
5
Domains
158 KB
Total Size

Language Analysis

Primary Language

🇳🇱Dutch
Code: nl
Confidence:34%
Script:Latin
Direction:ltr

Detection Details

Language Code:nl
Detection Confidence:34%
Script Type:Latin
Text Length:1,897 chars
Detector Agreement:75%

Website Classification

Primary Category

government public service87% confidence
Type: webapp
Method: ml+structural

All Detected Categories

government public service
87%
technology software
87%
corporate business
84%
documentation technical
83%
blog personal website
81%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
6104.20.46.39United States
AS13335Cloudflare, Inc.
4104.16.79.73United States
AS8075
420.50.88.245Amsterdam, North Holland, Netherlands
AS8075Microsoft Corporation
413.107.246.44UnknownUnknown
4146.75.122.132Frankfurt am Main, Hesse, Germany
AS54113Fastly, Inc.
225--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T100B2EDB106142C9E07E7AD48E1937A5D617EC836D31B872CB4A85DAC0FC6FF681EA354

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:nuNDAxCBa5nVWDr8KCRPpSqMdFR92cZAskmGIIctb/d0dz1nona2PW8So9iQosof:nt5nVjGgs/Trf0gi

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:24973:IgiKSCnQQCw1KUUCQKArDFjAJ/iB4aQBhMCkADqCDkBgIAIIFA8cOM9koGA4CtBTH2UlCcEMvC4IPJESotFISFKKCIRMQwow

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0777757777370707
Perceptual Hash:a6c238b5b53dc61a
Difference Hash:e5c5e5c7c7e7fffe
Wavelet Hash:0775753737330307
Color Hash:#8ac587

Other Hashes

Crop Resistant:e5c5e5c7c7e7fffe,686979616179beff

Scan History

Scan history not available

Unable to load historical scan data