Security Scan Report: mmiv.co.za

Redirected to: https://mmiv.co.za/nedbank-login/auth/index.php

Submitted: Dec 11, 2025, 4:55:18 AMCompleted: Dec 11, 2025, 4:56:21 AMpubliccompleted
Loading additional data...

Summary

This website contacted 18 IPs in 4 countries across 9 domains to perform 61 HTTP transactions. The main domain is mmiv.co.za and was registered NaN years ago.

Submitted URL: http://mmiv.co.za/nedbank-login/auth/index.php

Effective URL: https://mmiv.co.za/nedbank-login/auth/index.phpRedirected

AI Security Verdict

High Risk

Confidence: 95%

10
Risk Score

Phishing site impersonating Nedbank; high risk to users.

Risk Factors
Brand impersonation of Nedbank
Collection of usernames and passwords
Social engineering detection by Google Safe Browsing
Unranked domain despite brand claim
Multiple password fields increase credential harvesting risk
Domain age information unavailable

Details

Page Title

Online Banking

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

finance banking

(62%)

Domain Information

The domain 'mmiv.co.za' uses the South African country-code top-level domain (.co.za). Its registrable label 'mmiv' stretches across 4 characters split between 1 vowel and three consonants. Segmentation suggests 1 word: mmiv. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://mmiv.co.za/nedbank-login/auth/index.php

Page Load Overview

26.66s
Total Load Time
61
HTTP Requests
9
Domains
12.5 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:2,562 chars
Detector Agreement:100%

Website Classification

Primary Category

finance banking62% confidence
Type: webapp
Method: ml+structural

All Detected Categories

finance banking
62%
documentation technical
56%
technology software
51%
government public service
34%
finance/banking
30%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
10142.251.141.99United States
AS15169GOOGLE
3102.216.79.228Cape Town, Western Cape, South Africa
AS328266Atomic-AS
3104.17.209.240United States
AS13335CLOUDFLARENET
3142.250.185.195United States
AS15169GOOGLE
3142.251.140.164United States
AS15169GOOGLE
318.245.60.28United States
AS16509AMAZON-02
352.214.255.32Dublin, Leinster, Ireland
AS16509AMAZON-02
3172.64.147.188United States
AS13335CLOUDFLARENET
3104.18.40.68United States
AS13335CLOUDFLARENET
3104.17.208.240United States
AS13335CLOUDFLARENET
6118--

Detected Technologies2

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T17B53537156B1141907E3E5549EA37E0765A2EE23E88ACCC8359C4E496FC3FD8C8C72E9

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:Lj9pOPPj7PHzwW9+lKd0QzU2AsMg1G7VI:Lj9pOPPj7PHzwm+lKd0QzmsZ1mVI

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:62888:UeAkKSYQaoSYrDCQAAMgHkCEiLSMIAQhADSBCESpKKwFESKADIoLVQIkULIVYsWOGABwAwVLGbLAS1JMYPwIMVshIUkEZIwA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0000181818180000
Perceptual Hash:99666699cc669999
Difference Hash:100cb2b2b2b20c20
Wavelet Hash:0c0c1c1c3c3c0000
Color Hash:#3a785b

Other Hashes

Scan History

Scan history not available

Unable to load historical scan data