ScanMalware.com

Security Scan Report: 7qawnvmxx2.pages.dev

Redirected to: https://mia.nl.tab.digital/login

Site favicon
Submitted: Dec 8, 2025, 11:22:45 PMCompleted: Dec 8, 2025, 11:23:09 PMpubliccompleted
Loading additional data...

Summary

This website contacted 8 IPs in 1 country across 2 domains to perform 26 HTTP transactions. The main domain is mia.nl.tab.digital and was registered NaN years ago.

Submitted URL: http://7qawnvmxx2.pages.dev/

Effective URL: https://mia.nl.tab.digital/loginRedirected

AI Security Verdict

Confirmed Scam

Confidence: 100%

10
Risk Score

Confirmed phishing site with malicious indicator; do not provide credentials.

Risk Factors
Malicious primary domain indicator match
Credential harvesting login form on malicious site
Brand impersonation (Nextcloud) on a non‑official domain
Redirect to malicious domain
Unranked domain with brand name
Domain age information unavailable

Details

Page Title

Login – Nextcloud

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(79%)

Domain Information

The domain '7qawnvmxx2.pages.dev' uses the developer-focused generic top-level domain (.dev), featuring subdomain '7qawnvmxx2'. Its registrable label 'pages' stretches across 5 characters with two vowels and 3 consonants. Breaking it apart gives one word: pages. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://7qawnvmxx2.pages.dev/

Page Load Overview

5.38s
Total Load Time
26
HTTP Requests
2
Domains
140 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:271 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software79% confidence
Type: webapp
Method: ml+structural

All Detected Categories

technology software
79%
documentation technical
41%
real estate property
26%
corporate
25%

Detected Features

Login Form
Search
OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
5104.21.3.117United States
AS13335CLOUDFLARENET
3188.114.97.4United States
AS13335CLOUDFLARENET
3172.67.130.170United States
AS13335CLOUDFLARENET
3188.114.96.4United States
AS13335CLOUDFLARENET
32606:4700:310c::ac42:2f5eUnited States
AS13335CLOUDFLARENET
32606:4700:3037::ac43:82aaUnited States
AS13335CLOUDFLARENET
32606:4700:3034::6815:375United States
AS13335CLOUDFLARENET
32606:4700:310c::ac42:2ca2United States
AS13335CLOUDFLARENET
268--

Detected Technologies1

PasswordField
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1EBC2F713A1460EBEE102C59435ADA93D830DFBD26A919088D7E61CCE56C3CBAF5761CF

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:6NEH5f97+vvT3aZfglpl6kMzK8URHpwDoFEwwYpVe/E54J:6NEl97+vvT3aZfglpl6kMO8URHpwDoFq

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:26302:njzAZxAqXYKimLJYEWBpbxDEyrAAwBgECACDnPBoBzxQAlYpECQAGnIoQAOQNAQIjCiAqqoZtD14wOozRroGRCHEoQYAklYA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00181818387ee100
Perceptual Hash:c99c32e31eb0c93e
Difference Hash:d0f0b2b2f1c08733
Wavelet Hash:007878f8fcfee310
Color Hash:#ac5397

Other Hashes

Crop Resistant:a2a696a8313386a2,e0e0e0c2c1828303,a2d24c4d4a828282,d0f0b2b2f1c08733

Scan History

Scan history not available

Unable to load historical scan data