ScanMalware.com

Security Scan Report: api.vault.netvoyage.com

Redirected to: https://api.vault.netvoyage.com/neWeb2/docCent.aspx

Site favicon
Submitted: Jan 18, 2026, 11:01:46 AMCompleted: Jan 18, 2026, 11:03:04 AMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 2 countries across 2 domains to perform 11 HTTP transactions. The main domain is api.vault.netvoyage.com and was registered NaN years ago.

Submitted URL: https://api.vault.netvoyage.com

Effective URL: https://api.vault.netvoyage.com/neWeb2/docCent.aspxRedirected

The Cisco Umbrella rank of the primary domain is #21,740 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

High‑risk phishing page impersonating NetDocuments login; do not enter credentials.

Risk Factors
Brand impersonation of NetDocuments on an unrelated domain
Hidden password field indicating attempt to harvest credentials
Login form collecting passwords on a domain that does not belong to the brand
Domain age information unavailable

Details

Page Title

NetDocuments Login

Scan Type

public

Language

🇺🇸

English

(52% confidence)

Category

documentation technical

(56%)

Domain Information

Within the commercial generic top-level domain (.com), 'api.vault.netvoyage.com' is registered with subdomain 'api.vault'. Its registrable label 'netvoyage' stretches across 9 characters with 4 vowels and 5 consonants. Splitting it apart reveals two words: net, voyage. The median word length lands at 4.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://api.vault.netvoyage.com

Page Load Overview

7.24s
Total Load Time
104
HTTP Requests
28
Domains
2.0 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:52%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:52%
Script Type:Latin
Text Length:2,030 chars
Detector Agreement:100%

Website Classification

Primary Category

documentation technical56% confidence
Type: webapp
Method: ml+structural

All Detected Categories

documentation technical
56%
technology software
52%
government public service
30%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
5223.45.99.159Frankfurt am Main, Hesse, Germany
AS16625AKAMAI-AS
52141.193.213.11United States
AS209242Cloudflare London, LLC
1042--

Detected Technologies4

PasswordField
100%
Object
100%
ActiveX
100%
HSTS
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1A2A22A3992261F05036650983933F54DA7FF4027241BDE6E3ABD4E989F44FD6087A87E

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:TBs8FlZFf7/nWDwi+Bpl9/mmC0KauLOs6TEsGQj:N9FlZFf3HlpWa5s6hj

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:22782:NsACgDIIGAjVBFQwjEqWRCLQB4WAAAECqgFB3H4IgVQQAgBAclRQUmAgQIOIAOuatqHWaxHBAm3AFAThESBSiiGgIBqVjIhF

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:343030303c000000
Perceptual Hash:c6c639199939399b
Difference Hash:64646464659a6400
Wavelet Hash:3f3737333c3c0c0c
Color Hash:#c587a3

Other Hashes

Crop Resistant:c9cf8d8b4f43cd89,64646464659a6400,068d8dc39fcc8d31

Scan History

Scan history not available

Unable to load historical scan data