Security Scan Report: imposter.cosmicode.pt

Redirected to:
https://imposter.cosmicode.pt/admin/login
Submitted: May 22, 2026, 1:38:23 AMCompleted: May 22, 2026, 1:39:53 AMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 11 HTTP transactions. The main domain is imposter.cosmicode.pt.

Submitted URL: https://imposter.cosmicode.pt

Effective URL: https://imposter.cosmicode.pt/admin/loginRedirected

The Cisco Umbrella rank of the primary domain is #531,800 of the top 1 million websites

AI Security Verdict

Low Risk

Confidence: 95%

3
Risk Score

New, low‑rank domain hosting a login form with heavily obfuscated JavaScript; classified as a confirmed credential phishing scam.

Risk Factors
Newly registered domain (<7 days)
Low domain reputation rank
Credential collection form on untrusted domain
Highly obfuscated JavaScript
Phishing classification by ML model
Safety Factors
Self‑branding (site does not impersonate a known brand)
No concrete malicious signal (no IoC / YARA / Safe-Browsing / IDS / credential form / brand impersonation) — elevated risk rested on domain age or reputation alone; clamped from 10 to 3
Domain age information unavailable

Details

Page Title

Log In - Imposter

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

phishing scam

(76%)

Domain Information

The domain 'imposter.cosmicode.pt' uses the Portuguese country-code top-level domain (.pt), featuring subdomain 'imposter'. The registrable portion 'cosmicode' spans 9 characters with 4 vowels and 5 consonants. It segments into two words: cosmic, ode. The median word length lands at 4.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://imposter.cosmicode.pt

Page Load Overview

21.74s
Total Load Time
12
HTTP Requests
1
Domains
146 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:95 chars
Detector Agreement:100%

Website Classification

Primary Category

phishing scam76% confidence
Type: webapp
Method: ml+structural

All Detected Categories

phishing scam
76%
adult content
53%
news media journalism
29%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
12161.35.68.101Frankfurt am Main, Hesse, Germany
AS14061DigitalOcean, LLC
121--

Detected Technologies2

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T196931B2F671469BD9723C3DAB9826E57619790B6A3501C0DE8EFC42801FB3CEB157C68

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:3NyyyGaQONF+uU8cNhBxNxyUoagR4z3DvySiizfVi9ZXOyepjm/qCGR4Z3DvySiE:3NyyyGaQOJcNhBxNxyUoaL3DvySiizfI

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:90397:lSEggKgCEEA0AAFAQBCFCBYCVFKQoFBo0r+CFWMTEaAoiCQClACu3FKFILyiiACO0AogNymQViFIBARHRACgShABRIS8ExE8

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:e7ffffe7e7ffffff
Perceptual Hash:b399896666669999
Difference Hash:0832324c4c300000
Wavelet Hash:00183820f8f0fcfc
Color Hash:#c5878e

Other Hashes

Crop Resistant:0832324c4c300000

Scan History

Scan history not available

Unable to load historical scan data