ScanMalware.com

Security Scan Report: occupational-emerald-hjt3ibssoy-697p8h1unp.edgeone.app

Submitted: Apr 28, 2026, 11:00:22 PMCompleted: Apr 28, 2026, 11:01:42 PMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 1 HTTP transaction. The main domain is occupational-emerald-hjt3ibssoy-697p8h1unp.edgeone.app and was registered NaN years ago.

Submitted URL: https://occupational-emerald-hjt3ibssoy-697p8h1unp.edgeone.app/

The Cisco Umbrella rank of the primary domain is #455,732 of the top 1 million websites

AI Security Verdict

Moderate Risk

Confidence: 72%

5
Risk Score

The site is a newly created subdomain on a low‑ranked hosting platform that hosts a refund form collecting sensitive bank details, indicating a moderate‑risk credential phishing attempt.

Risk Factors
Unknown subdomain age on a hosting platform
Low domain reputation ranking
Financial information collection without legitimate context
Hosting on a generic subdomain (edgeone.app) rather than a branded domain
Domain age information unavailable

Details

Page Title

Refund Payment Form

Scan Type

public

Language

🇩🇪

German

(58% confidence)

Category

finance banking

(73%)

Domain Information

Domain 'occupational-emerald-hjt3ibssoy-697p8h1unp.edgeone.app' uses the application-focused generic top-level domain (.app) and includes subdomain 'occupational-emerald-hjt3ibssoy-697p8h1unp'. Its registrable label 'edgeone' stretches across 7 characters split between four vowels and three consonants. Splitting it apart reveals two words: edge, one. Median word length is 3.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://occupational-emerald-hjt3ibssoy-697p8h1unp.edgeone.app/

Page Load Overview

0.67s
Total Load Time
2
HTTP Requests
1
Domains
1 KB
Total Size

Language Analysis

Primary Language

🇩🇪German
Code: de
Confidence:58%
Script:Latin
Direction:ltr

Detection Details

Language Code:de
Detection Confidence:58%
Script Type:Latin
HTML Lang Attribute:en
Text Length:61 chars
Detector Agreement:100%
Language mismatch: Declared as en but detected as de

Website Classification

Primary Category

finance banking73% confidence
Type: static
Method: ml+structural

All Detected Categories

finance banking
73%
healthcare medical
54%
government public service
51%
adult content
27%
news media journalism
26%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
243.152.26.58Singapore
AS139341ACE
21--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1EF214EC665EB08CE641082742B76CA41329ED113950EC858FADCB5F88F80A51C173788

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

24:hR2ACyc8xbcTwh7YFNSTYFUpHlaRqh0ivndvWtXkLKj:TZCFNvFUJgu0Gdvskc

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:1407:AIAABQAyAAAAAwQAABAAAAAYAAIAAEAIAGAAIAACAAAAAABAQAAAAAEAQAAAAMAAABQQAAAABAAAAQgAJAAAAAMIAAAgAACA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:e7dbe7e7ffe7ffff
Perceptual Hash:b33399cc66662699
Difference Hash:28324c4c30080000
Wavelet Hash:c0d8d8c0f0f0f0f0
Color Hash:#6bac53

Other Hashes

Crop Resistant:28324c4c30080000

Scan History

Scan history not available

Unable to load historical scan data