Login MySantander

finance banking

German

incap_ses_8219_3277841

visid_incap_3277841

nlbi_3277841

dtCookie

nlbi_2187745

incap_ses_8219_2187745

You're looking at domain 'sansign-login.app' on the application-focused generic top-level domain (.app). Its registrable label 'sansign-login' stretches across 13 characters split between four vowels and eight consonants, notching one hyphen. Splitting it apart reveals three words: san, sign, login. The median word length lands at four characters. No strong language cues emerged from the frequency lists.

html/72/35/7235a314-f0d1-4c9d-980f-804ea373a52b.html.gz

upgrade-insecure-requests; default-src 'self' https://*.santander.de; script-src 'self' 'unsafe-inline' https://*.santander.de https://*.usercentrics.eu https://*.online-metrix.net https://*.googletagmanager.com; style-src 'self' 'unsafe-inline' https://*.santander.de; img-src 'self' data: https://*.santander.de https://*.usercentrics.eu https://*.online-metrix.net https://*.google.es https://*.google.fr; connect-src 'self' https://*.santander.de https://*.usercentrics.eu https://*.online-metrix.net https://*.google-analytics.com https://*.analytics.google.com https://apigateway-internet-backend-client.scger.gs.corp; frame-src 'self' https://*.santander.de https://*.usercentrics.eu https://h.online-metrix.net; object-src 'none'; worker-src blob:

default-src *.opendns.com gateway.id.swg.umbrella.com 'self'; font-src *.opendns.com gateway.id.swg.umbrella.com 'self' https://fonts.gstatic.com https://fonts.googleapis.com https://www.google.com https://www.google.es www.google-analytics.com *.doubleclick.net *.google.com data:; img-src *.medium.com *.opendns.com gateway.id.swg.umbrella.com 'self' https://i.ytimg.com https://maps.googleapis.com https://secure.gravatar.com https://www.google-analytics.com https://stats.g.doubleclick.net https://www.google.com https://www.google.es https://optanon.blob.core.windows.net https://www.googletagmanager.com https://pixel.mathtag.com *.doubleclick.net *.gstatic.com https://code.jquery.com *.cookielaw.org *.google-analytics.com *.analytics.google.com *.tealiumiq.com tags.tiqcdn.com *.google.com *.google.es cdn.cookielaw.org data:; script-src 'self' tags.tiqcdn.com *.googleapis.com gruposantand-stage.adobemsbasic.com gruposantand-prod.adobemsbasic.com tbcdn.talentbrew.com player.vimeo.com www.youtube.com *.gstatic.com player.vimeo.com s.ytimg.com irs.tools.investis.com tags.tiqcdn.com https://www.google.com https://www.google.es https://www.gstatic.com https://static.addtoany.com https://www.googletagmanager.com https://www.google-analytics.com https://optanon.blob.core.windows.net https://pixel.mathtag.com *.doubleclick.net *.onetrust.com https://code.jquery.com https://tagmanager.google.com *.cookielaw.org *.opendns.com *.google.com *.google.es code.jquery.com cdn.cookielaw.org *.tealiumiq.com cdn.evgnet.com 'unsafe-inline' 'unsafe-eval'; style-src *.opendns.com gateway.id.swg.umbrella.com 'self' https://tbcdn.talentbrew.com https://fonts.googleapis.com https://code.jquery.com https://optanon.blob.core.windows.net https://www.google.com https://www.google-analytics.com https://tagmanager.google.com https://static.addtoany.com *.cookielaw.org *.google.com *.googleapis.com 'unsafe-inline'; connect-src 'self' *.tealiumiq.com https://maps.googleapis.com https://stats.g.doubleclick.net *.onetrust.com *.cookielaw.org *.opendns.com *.google.com optanon.blob.core.windows.net *.google-analytics.com *.analytics.google.com; child-src *.opendns.com 'self' https://www.google.com *.player.vimeo.com https://www.youtube.com https://www.youtube-nocookie.com https://static.addtoany.com *.doubleclick.net google-analytics.com *.onetrust.com *.tealiumiq.com *.analytics.google.com; object-src https://www.google.com;, frame-ancestors meine.santander.de http://localhost:*

default-src *.opendns.com gateway.id.swg.umbrella.com 'self'; font-src *.opendns.com gateway.id.swg.umbrella.com 'self' https://fonts.gstatic.com https://fonts.googleapis.com https://www.google.com https://www.google.es www.google-analytics.com *.doubleclick.net *.google.com data:; img-src *.medium.com *.opendns.com gateway.id.swg.umbrella.com 'self' https://i.ytimg.com https://maps.googleapis.com https://secure.gravatar.com https://www.google-analytics.com https://stats.g.doubleclick.net https://www.google.com https://www.google.es https://optanon.blob.core.windows.net https://www.googletagmanager.com https://pixel.mathtag.com *.doubleclick.net *.gstatic.com https://code.jquery.com *.cookielaw.org *.google-analytics.com *.analytics.google.com *.tealiumiq.com tags.tiqcdn.com *.google.com *.google.es cdn.cookielaw.org data:; script-src 'self' tags.tiqcdn.com *.googleapis.com gruposantand-stage.adobemsbasic.com gruposantand-prod.adobemsbasic.com tbcdn.talentbrew.com player.vimeo.com www.youtube.com *.gstatic.com player.vimeo.com s.ytimg.com irs.tools.investis.com tags.tiqcdn.com https://www.google.com https://www.google.es https://www.gstatic.com https://static.addtoany.com https://www.googletagmanager.com https://www.google-analytics.com https://optanon.blob.core.windows.net https://pixel.mathtag.com *.doubleclick.net *.onetrust.com https://code.jquery.com https://tagmanager.google.com *.cookielaw.org *.opendns.com *.google.com *.google.es code.jquery.com cdn.cookielaw.org *.tealiumiq.com cdn.evgnet.com 'unsafe-inline' 'unsafe-eval'; style-src *.opendns.com gateway.id.swg.umbrella.com 'self' https://tbcdn.talentbrew.com https://fonts.googleapis.com https://code.jquery.com https://optanon.blob.core.windows.net https://www.google.com https://www.google-analytics.com https://tagmanager.google.com https://static.addtoany.com *.cookielaw.org *.google.com *.googleapis.com 'unsafe-inline'; connect-src 'self' *.tealiumiq.com https://maps.googleapis.com https://stats.g.doubleclick.net *.onetrust.com *.cookielaw.org *.opendns.com *.google.com optanon.blob.core.windows.net *.google-analytics.com *.analytics.google.com; child-src *.opendns.com 'self' https://www.google.com *.player.vimeo.com https://www.youtube.com https://www.youtube-nocookie.com https://static.addtoany.com *.doubleclick.net google-analytics.com *.onetrust.com *.tealiumiq.com *.analytics.google.com; object-src https://www.google.com;

interstitial-banner-iframe

empty

cec5c3fad819f8a6bb2b9b200b544f647a159f3d45c34eb67748cfb142b5ddea

2c4c6d112c20b47741f9de8fa21d4b4a39d3d71721229c9233884d5947554b17

a680c764f8b67198663471e88b573c3aea2f44438698132f82238dccdce984eb

0a1fa7f52ff7537226769308d1da0184b16b17bbd498f4e7a3170e543f8a854c

4f10320ce557e26b2489c3efc762fad55929f0b4e03fb80ccf57c3be87314f7b

850f06d8c968ce841c3cbd53f1bb102bde4f356fd9518b0a740d2fa6a5b4bcb6

5f04aff7d31ad47503b7693c3b6e33071ccc978c29ebbd33354fb686b18a9c84

0a0f1c76b1c6659e3222a32e1b1bf245a6b1dbd0d7483862cccfb15aab241bff

4e5a2210c36ed84fee701d5dd03065203a51149b170ecf3f72fddf314b91d95f

060aa7ed71a40e02a836b8661ec748c57a2801537524b8f5381690b746524cef

e9c84c3d34963abfd19580aeeb685b722bd3d133d2dee91deaaeb8f7d61e09e8

cca7e0580f90b5a82aad6e473745d6388ec3fe89aa0902324dfa1d8e85795f0b

94e60f56c1ea0709f3661c714a5fcda3b23fc55926ca7d84a37c5d069fe280a2

8aee6f0c20042e90670744c0badfb9e7017dccedf2e6bf25ae841ea5152d7f50

c250924012fdc9ea9516b30650895201cd167dbd49c9d148924f30881abfa393

3b230c0e9befcb75fe44eeab0f487e68fc89d78fafa97d7d81f65f4039badef6

d68d9fe3aa68fa1a53f46c53de0d1c2de0153d2f74f6d2978c400a6e4d7e7b6e

ec098b0dd2076a4611c14a8d83383b6ec050a67832e2215f57f9be8881497dce

281460dbf0511493cff7c6535f10a2b525b39fcbfea2ab482ef3f7570946da9e

106c4968e3d6c15f942e67545e25664fb39003ca49592f6bb5881fbe59b8d45c

700eadd7909cb96ebc755ad38caeb1088a8874be62ad4b67851cc37620a104fe

width=device-width,initial-scale=1,shrink-to-fit=no

viewport

theme-color

robots

msapplication-TileColor

lvIYa429Mg5KkVH_Djfwl26TIvSqfHJq_9DbP4UAsGo

google-site-verification

HSTS header missing - vulnerable to protocol downgrade attacks

CSP header missing - vulnerable to XSS attacks

html/72/35/7235a314-f0d1-4c9d-980f-804ea373a52b_nodriver.html.gz

santander.de

NICENIC INTERNATIONAL GROUP CO., LIMITED

sansign-login.app

GC Abuse

Google LLC

GOOGLE-CLOUD

HTTP/3

Cloudflare Bot Management

Cloudflare

href.li

app.usercentrics.eu

api.usercentrics.eu

Tracking domain: consent-api.service.consent.usercentrics.eu

consent-api.service.consent.usercentrics.eu

✅ Low Risk - https://sansign-login.app/

Requests	IP Address	Location	AS Autonomous System
16	172.67.184.16	United States	AS2635
14	35.241.3.184	Kansas City, Missouri, United States	AS396982Google LLC
14	45.60.197.69	United States	AS19551Incapsula Inc
14	35.190.14.188	United States	AS396982Google LLC
14	91.235.133.67	United States	AS30286ThreatMetrix Inc.
14	91.235.134.131	United States	AS30286ThreatMetrix Inc.
14	192.0.78.27	United States	Unknown
14	91.235.132.130	United States	AS30286ThreatMetrix Inc.
114	8	-	-

Security Scan Report: sansign-login.app

Summary

AI Security Verdict

Confirmed Scam

Risk Factors

Details

Bot Protection Detected

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Detected Technologies3

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

ssdeep (Context Triggered Piecewise Hashing)

sdhash (Similarity Digest Hashing)

Image Hashes

Perceptual Hashes

Other Hashes

Scan History