ScanMalware.com

Security Scan Report: dark4-ci9uv8obk9.edgeone.app

Submitted: Mar 18, 2026, 3:40:16 PMCompleted: Mar 18, 2026, 3:41:35 PMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 3 countries across 5 domains to perform 14 HTTP transactions. The main domain is dark4-ci9uv8obk9.edgeone.app and was registered NaN years ago.

Submitted URL: https://dark4-ci9uv8obk9.edgeone.app/

The Cisco Umbrella rank of the primary domain is #455,732 of the top 1 million websites

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

New subdomain with TikTok‑brand login form; high‑risk credential phishing – do not provide credentials.

Risk Factors
New domain (<7 days) collecting credentials
Brand impersonation of TikTok on unrelated domain
Credential‑harvesting login form on free‑hosting subdomain
Potential credential exfiltration (email/password)
Domain age information unavailable

Details

Page Title

زيادة متابعين تيك توك | مجاناً

Scan Type

public

Language

🇸🇦

Arabic

(80% confidence)

Category

unknown

(0%)

Domain Information

Within the application-focused generic top-level domain (.app), 'dark4-ci9uv8obk9.edgeone.app' is registered and includes subdomain 'dark4-ci9uv8obk9'. The second-level label 'edgeone' is 7 characters long holding 4 vowels versus three consonants. Segmentation suggests two words: edge, one. Median word length comes out to 3.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://dark4-ci9uv8obk9.edgeone.app/

Page Load Overview

1.18s
Total Load Time
13
HTTP Requests
5
Domains
284 KB
Total Size

Language Analysis

Primary Language

🇸🇦Arabic
Code: ar
Confidence:80%
Script:Arabic
Direction:rtl

Detection Details

Language Code:ar
Detection Confidence:80%
Script Type:Arabic
HTML Lang Attribute:ar
Text Length:737 chars
Detector Agreement:75%

Website Classification

Primary Category

unknown0% confidence
Type: webapp
Method: structural

All Detected Categories

No categories detected

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
5142.251.36.99United States
AS15169Google LLC
223.32.238.194Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
2104.17.24.14United States
AS13335Cloudflare, Inc.
243.152.26.58Singapore
AS139341ACE
2142.250.186.42United States
AS15169Google LLC
135--

Detected Technologies1

PasswordField
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T11BA2935A54F315212517E86D5BF32A0A7AB2E803D90EDD193ECD53C48FEA89BCD17328

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:09vGSykkkkkkMiKbuMPgipUUhcILAKXlNIFWF1LJcquu8626yJr11JrG6X0aAFfz:09lZIFWF3b011JYxiiFi3iUUEDYhF2ju

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:21897:JYtAoQgoCUQn9BTTJ2AoAMgjoMATUsB4E8XEosRABRAQQpBxCQj6QGC61MrQwBbRxxjUYHALYFoSgEZRUBrISmirpk9EcAIQ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0101030b3f0f033f
Perceptual Hash:aa68689a9b7521cf
Difference Hash:979397b379bf9769
Wavelet Hash:4141435f5f1f033f
Color Hash:#2d8636

Other Hashes

Crop Resistant:cbcbcbcbcbe0c3c7,979397b379bf976b

Scan History

Scan history not available

Unable to load historical scan data