ScanMalware.com

Security Scan Report: k-vault-efn.pages.dev

Redirected to:
https://k-vault-efn.pages.dev/login?redirect=%2Fadmin
Site favicon
Submitted: May 5, 2026, 7:17:24 AMCompleted: May 5, 2026, 7:18:44 AMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 1 country across 3 domains to perform 24 HTTP transactions. The main domain is k-vault-efn.pages.dev and was registered NaN years ago.

Submitted URL: https://k-vault-efn.pages.dev/admin.html

Effective URL: https://k-vault-efn.pages.dev/login?redirect=%2FadminRedirected

AI Security Verdict

Moderate Risk

Confidence: 92%

5
Risk Score

The site hosts a credential‑harvesting login on a newly created unranked .pages.dev subdomain, impersonating “K‑Vault”, indicating a high‑risk phishing scam.

Risk Factors
Unranked domain (not in Cisco Umbrella top 1M)
New or unknown subdomain creation date
Credential‑harvesting form lacking username/email field
Brand impersonation on a non‑official domain
Safety Factors
No malicious Indicators of Compromise detected in threat intelligence databases
No JavaScript malware patterns detected by YARA
No network IDS alerts reported
Established domain (2071 days old) with no strong malicious indicators — risk clamped from 8 to 5
Domain age information unavailable

Details

Page Title

登录 | K-Vault

Scan Type

public

Language

🇨🇳

Chinese

(60% confidence)

Category

unknown

(0%)

Domain Information

You're looking at domain 'k-vault-efn.pages.dev' on the developer-focused generic top-level domain (.dev), featuring subdomain 'k-vault-efn'. The core label 'pages' covers 5 characters containing 2 vowels alongside 3 consonants. Splitting it apart reveals one word: pages. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://k-vault-efn.pages.dev/admin.html

Page Load Overview

1.72s
Total Load Time
28
HTTP Requests
4
Domains
691 KB
Total Size

Language Analysis

Primary Language

🇨🇳Chinese
Code: zh
Confidence:60%
Script:Han
Direction:ltr

Detection Details

Language Code:zh
Detection Confidence:60%
Script Type:Han
HTML Lang Attribute:zh-CN
Text Length:84 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: static
Method: structural

All Detected Categories

No categories detected

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
10151.101.194.217United States
AS54113Fastly, Inc.
9188.114.96.3United States
AS13335Cloudflare, Inc.
9104.17.207.5United States
AS13335Cloudflare, Inc.
283--

Detected Technologies3

HTTP/3
40%
Cloudflare Bot Management
40%
Cloudflare
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1F172865B36B30452B957F4BC3BEB07457225C003C50ECD297FEC63888F4AAA5A96279D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:zrAQHZj7Si+23+QB0ow5BOSIzkfWuevY/jjjhpf8dGLFM+az577Fzc7BkWJvU2zD:zrAQBjy5a1abJvUu5DQzM7OiGevx0G

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:16325:kBAgi4gPAUlDCIhqCADEN4xBIEBQKQsawhUzOIYocFOiqQAAhAnCJMJCCAR8G5AgeoMKpjAUBSYIABIRkwKaiJAQxQAgjC98

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0018181818241800
Perceptual Hash:99cc6633cccc33cc
Difference Hash:0c313232324c3214
Wavelet Hash:001b1f1f1f071f1f
Color Hash:#3a6778

Other Hashes

Crop Resistant:0c313232324c3214

Scan History

Scan history not available

Unable to load historical scan data