ScanMalware.com

Security Scan Report: villagroup.online

Submitted: Jan 27, 2026, 3:52:50 AMCompleted: Jan 27, 2026, 3:54:03 AMpubliccompleted
Loading additional data...

Summary

This website contacted 8 IPs in 2 countries across 9 domains to perform 18 HTTP transactions. The main domain is villagroup.online and was registered NaN years ago.

Submitted URL: https://villagroup.online/

AI Security Verdict

Confirmed Scam

Confidence: 95%

9
Risk Score

Confirmed scam due to credential harvesting on a brand‑new domain.

Risk Factors
Password field without username (credential harvesting)
Domain age 2 days (critical risk)
Login form on a newly registered domain
Domain age information unavailable

Details

Page Title

Emergent | Fullstack App

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(80%)

Domain Information

Domain 'villagroup.online' uses the modern generic top-level domain (.online) and has no subdomain. The registrable portion 'villagroup' spans 10 characters holding four vowels versus 6 consonants. Breaking it apart gives two words: villa, group. The median word length lands at five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://villagroup.online/

Page Load Overview

4.53s
Total Load Time
27
HTTP Requests
10
Domains
2.4 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:234 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software80% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

technology software
80%
finance banking
75%
documentation technical
52%
gambling betting
38%
cryptocurrency blockchain
30%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
6104.16.80.73United States
AS15169
3146.75.122.208Frankfurt am Main, Hesse, Germany
AS54113Fastly, Inc.
3104.20.17.167United States
AS13335Cloudflare, Inc.
3172.66.2.113United States
AS13335Cloudflare, Inc.
3108.138.7.73United States
AS16509
3185.199.109.133United StatesUnknown
3142.251.141.138United StatesUnknown
3142.251.141.99United StatesUnknown
278--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1D0322A316805693AC5539AD8F2F5F32E253FA31AC757C6D8F1A845B463C2EC388139A8

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:aGBcqRa7KBku+6tXScXGWOBlY6uoWfr4cW7r9KoGUgD7Mwnx/j0QZ9:nBayXfXGRBlY7oWECnx/jnZ9

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:10996:E5MYCJGTIjNCiUiHkYkwGCwSOAAUAIYoRyAGogEE4oFmQCsECAqAqAJAWRNFCFImgCX4Z4R2qz8iEREhI0BGBBKwiOkTYTBY

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:c0e0e0e0e4e0e6e6
Perceptual Hash:f609347b008f6bb6
Difference Hash:018101830c0c0c0c
Wavelet Hash:e0e0e0f0f4e4e6e6
Color Hash:#3c3a78

Other Hashes

Crop Resistant:04204c4d4d4c1004,018101830c0c0c0c

Scan History

Scan history not available

Unable to load historical scan data