Security Scan Report: haterman01-email-fix-server0978u7y65.mdbgo.io

Submitted: Nov 26, 2025, 12:22:44 AMCompleted: Nov 26, 2025, 12:24:55 AMpubliccompleted
Loading additional data...

Summary

This website contacted 22 IPs in 3 countries across 8 domains to perform 12 HTTP transactions. The main domain is haterman01-email-fix-server0978u7y65.mdbgo.io.

Submitted URL: https://haterman01-email-fix-server0978u7y65.mdbgo.io/[email protected]

The Cisco Umbrella rank of the primary domain is #732,354 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 92%

9
Risk Score

Phishing site harvesting credentials; do not enter any login information.

Risk Factors
Credential harvesting form on a suspicious, low‑ranked domain
Brand impersonation (Btcexplore) on a domain that does not belong to the brand
Potentially newly registered domain with no established reputation
Domain age information unavailable

Details

Page Title

Btcexplore - MAIL SYSTEM Sign in to continue

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

malicious

(55%)

Domain Information

The domain 'haterman01-email-fix-server0978u7y65.mdbgo.io' uses the British Indian Ocean Territory country-code top-level domain (.io), featuring subdomain 'haterman01-email-fix-server0978u7y65'. The second-level label 'mdbgo' is 5 characters long split between 1 vowel and four consonants. Segmentation suggests three words: m, db, go. Median word length comes out to 2 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://haterman01-email-fix-server0978u7y65.mdbgo.io/index.html?e=accounts@btcexplore.com

Page Load Overview

1.31s
Total Load Time
12
HTTP Requests
8
Domains
317 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:831 chars
Detector Agreement:100%

Website Classification

Primary Category

malicious55% confidence
Type: static
Method: ml+structural

All Detected Categories

malicious
55%
other
50%
suspicious phishing
29%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
3172.217.23.99United States
AS15169GOOGLE
2104.17.25.14United States
AS13335CLOUDFLARENET
2142.250.185.68United States
AS15169GOOGLE
1142.250.185.234United States
AS15169GOOGLE
193.105.88.216Wroclaw, Lower Silesia, Poland
AS50606Horyzont Technologie Internetowe sp.z.o.o.
1146.75.120.193Frankfurt am Main, Hesse, Germany
AS54113FASTLY
1151.101.193.229San Francisco, California, United States
AS54113FASTLY
1107.21.221.175Ashburn, Virginia, United States
AS14618AMAZON-AES
02a04:4e42:400::485United States
AS54113FASTLY
02a04:4e42:600::485United States
AS54113FASTLY
1222--

Content Similarity HashesFor malware variant detection

Image Hashes

Perceptual Hashes

Average Hash:ffe7efff03038787
Perceptual Hash:b7c09a2dd9d00d6b
Difference Hash:0c0c4e0c4b775c3a
Wavelet Hash:efe7e7e701010307
Color Hash:#46931f

Other Hashes

Crop Resistant:0c0c4e0c4b775c3a

Scan History

Scan history not available

Unable to load historical scan data