ScanMalware.com

Security Scan Report: d235vmrai5heq2.cloudfront.net

Submitted: Nov 26, 2025, 11:28:21 PMCompleted: Nov 26, 2025, 11:32:20 PMpubliccompleted
Loading additional data...

Summary

This website contacted 148 IPs in 3 countries across 22 domains to perform 133 HTTP transactions. The main domain is d235vmrai5heq2.cloudfront.net.

Submitted URL: https://d235vmrai5heq2.cloudfront.net/

AI Security Verdict

High Risk

Confidence: 78%

8
Risk Score

High‑risk phishing page impersonating Zenler on a cloud storage domain

Risk Factors
Brand impersonation on an unusual, untrusted domain
Cloud storage hosting (cloudfront.net) used for content delivery
Unranked/low‑reputation domain
Garbled OCR text indicating suspicious social‑engineering tactics
Domain age information unavailable

Details

Page Title

Zenler - Best All in One Online Course Platform to Create & Sell Courses, Community and Coaching

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(52%)

Domain Information

Domain 'd235vmrai5heq2.cloudfront.net' uses the network infrastructure generic top-level domain (.net) and includes subdomain 'd235vmrai5heq2'. Count 10 characters in 'cloudfront' with 3 vowels and 7 consonants. Tokenizing the label suggests two words: cloud, front. The median word length lands at 5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://d235vmrai5heq2.cloudfront.net/

Page Load Overview

2.68s
Total Load Time
133
HTTP Requests
22
Domains
18.0 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:7,432 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software52% confidence
Type: static
Method: ml+structural

All Detected Categories

technology software
52%
corporate
25%

Detected Features

OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
13352.222.236.107United States
AS16509AMAZON-02
7465.8.131.101United States
AS16509AMAZON-02
10104.18.40.68United States
AS13335CLOUDFLARENET
8142.250.186.142United States
AS15169GOOGLE
852.242.103.142Boydton, Virginia, United States
AS8075MICROSOFT-CORP-MSN-AS-BLOCK
452.222.236.94United States
AS16509AMAZON-02
4142.250.186.136United States
AS15169GOOGLE
2157.240.0.6Frankfurt am Main, Hesse, Germany
AS32934FACEBOOK
23.174.46.20United States
AS16509AMAZON-02
2216.239.32.36United States
AS15169GOOGLE
133148--

Detected Technologies1

Open-Graph-Protocolvwebsite
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T174E463519C11006BE4613C6A35C2BF187DEEA2128B904C76F43A9D513EF6C6EB09F7E6

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

6144:yn3L5+0EWi7WB7zI7WIn7DQjoPMm7NUPPfTLm9boN7VcWqN979KvIpqqx7MKeA6w:IA9MPXm9bz

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:659883:ABaBBYEORAEDCDQT8gUKCcVuQQBA0pCEQASUkAEMSkrXIFBSDsJYFJCDYCClIrQZBlEGBI0eQCHsgg9AObgABDBwJEwLJBuK

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Scan History

Scan history not available

Unable to load historical scan data