ScanMalware.com

Security Scan Report: deref-mail.com

Submitted: Apr 21, 2026, 10:42:57 PMCompleted: Apr 21, 2026, 10:44:05 PMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 2 countries across 4 domains to perform 17 HTTP transactions. The main domain is deref-mail.com and was registered NaN years ago.

Submitted URL: https://deref-mail.com/mail/client/zUmOPp_HAhY/dereferrer/?redirectUrl=https%3A%2F%2Fderef-mail.com%2Fmail%2Fclient%2FPzwSvIPwUvE%2Fdereferrer%2F%3FredirectUrl%3Dhttps%253A%252F%252Fderef-mail.com%252Fmail%252Fclient%252F3XwXK8HERSY%252Fdereferrer%252F%253FredirectUrl%253Dhttps%25253A%25252F%25252Fderef-mail.com%25252Fmail%25252Fclient%25252FW4xJlecxxxo%25252Fdereferrer%25252F%25253FredirectUrl%25253Dhttps%2525253A%2525252F%2525252Fderef-mail.com%2525252Fmail%2525252Fclient%2525252FdyDWwsbvUeU%2525252Fdereferrer%2525252F%2525253FredirectUrl%2525253Dhttps%252525253A%252525252F%252525252Fderef-mail.com%252525252Fmail%252525252Fclient%252525252FV_aqrOOu_2c%252525252Fdereferrer%252525252F%252525253FredirectUrl%252525253Dhttps%25252525253A%25252525252F%25252525252Fderef-mail.com%25252525252Fmail%25252525252Fclient%25252525252FogW12J893og%25252525252Fdereferrer%25252525252F%25252525253FredirectUrl%25252525253Dhttps%2525252525253A%2525252525252F%2525252525252Fderef-mail.com%2525252525252Fmail%2525252525252Fclient%2525252525252FbvYjx1y5syA%2525252525252Fdereferrer%2525252525252F%2525252525253FredirectUrl%2525252525253Dhttps%252525252525253A%252525252525252F%252525252525252Fderef-mail.com%252525252525252Fmail%252525252525252Fclient%252525252525252FWvniS0ox1c0%252525252525252Fdereferrer%252525252525252F%252525252525253FredirectUrl%252525252525253Dhttps%25252525252525253A%25252525252525252F%25252525252525252Fderef-mail.com%25252525252525252Fmail%25252525252525252Fclient%25252525252525252FK4PEGxbmCZk%25252525252525252Fdereferrer%25252525252525252F%25252525252525253FredirectUrl%25252525252525253Dhttp%2525252525252525253A%2525252525252525252F%2525252525252525252Fwww.selfridges.com

The Cisco Umbrella rank of the primary domain is #554,690 of the top 1 million websites

AI Security Verdict

Moderate Risk

Confidence: 82%

4
Risk Score

The site shows a redirect warning referencing mail.com, has high JS obfuscation and low ranking, but lacks malicious indicators; treat as moderate risk.

Risk Factors
Low Cisco Umbrella ranking for a site mentioning a well‑known brand
High JavaScript obfuscation score (potentially hidden malicious code)
Brand name mismatch (mail.com) on unrelated domain
Safety Factors
Domain age >10 years (well‑established)
No forms collecting credentials or payments
No detected Indicators of Compromise, YARA matches, or IDS alerts
Domain age information unavailable

Details

Page Title

mail.com

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

The domain 'deref-mail.com' uses the commercial generic top-level domain (.com) and has no subdomain. The core label 'deref-mail' covers 10 characters holding 4 vowels versus five consonants, plus one hyphen. Word splitting yields 3 words: de, ref, mail. The median word length lands at three characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://deref-mail.com/mail/client/zUmOPp_HAhY/dereferrer/?redirectUrl=https%3A%2F%2Fderef-mail.com%2Fmail%2Fclient%2FPzwSvIPwUvE%2Fdereferrer%2F%3FredirectUrl%3Dhttps%253A%252F%252Fderef-mail.com%252Fmail%252Fclient%252F3XwXK8HERSY%252Fdereferrer%252F%253FredirectUrl%253Dhttps%25253A%25252F%25252Fderef-mail.com%25252Fmail%25252Fclient%25252FW4xJlecxxxo%25252Fdereferrer%25252F%25253FredirectUrl%25253Dhttps%2525253A%2525252F%2525252Fderef-mail.com%2525252Fmail%2525252Fclient%2525252FdyDWwsbvUeU%2525252Fdereferrer%2525252F%2525253FredirectUrl%2525253Dhttps%252525253A%252525252F%252525252Fderef-mail.com%252525252Fmail%252525252Fclient%252525252FV_aqrOOu_2c%252525252Fdereferrer%252525252F%252525253FredirectUrl%252525253Dhttps%25252525253A%25252525252F%25252525252Fderef-mail.com%25252525252Fmail%25252525252Fclient%25252525252FogW12J893og%25252525252Fdereferrer%25252525252F%25252525253FredirectUrl%25252525253Dhttps%2525252525253A%2525252525252F%2525252525252Fderef-mail.com%2525252525252Fmail%2525252525252Fclient%2525252525252FbvYjx1y5syA%2525252525252Fdereferrer%2525252525252F%2525252525253FredirectUrl%2525252525253Dhttps%252525252525253A%252525252525252F%252525252525252Fderef-mail.com%252525252525252Fmail%252525252525252Fclient%252525252525252FWvniS0ox1c0%252525252525252Fdereferrer%252525252525252F%252525252525253FredirectUrl%252525252525253Dhttps%25252525252525253A%25252525252525252F%25252525252525252Fderef-mail.com%25252525252525252Fmail%25252525252525252Fclient%25252525252525252FK4PEGxbmCZk%25252525252525252Fdereferrer%25252525252525252F%25252525252525253FredirectUrl%25252525252525253Dhttp%2525252525252525253A%2525252525252525252F%2525252525252525252Fwww.selfridges.com

Page Load Overview

1.54s
Total Load Time
17
HTTP Requests
4
Domains
153 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:207 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: dynamic
Method: structural

All Detected Categories

No categories detected

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
974.208.232.57United States
AS8560IONOS SE
823.52.180.183Frankfurt am Main, Hesse, Germany
AS16625Akamai Technologies, Inc.
172--

Detected Technologies1

JQueryv1.12.4
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T15F52D1691F90585034DD8698FABCFD88A0B1130A99EEEED4C3AD3547DBD7F9DB004186

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:pYG+N1jk+p+zZBZz2phjvgWdfwxf1jk+p+zZBZz2phjvczLlzjmpZzJBmz9p4ULr:piN1o+IN3K3J9a1o+IN3K3IzLlzKXVUj

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:13895:CSSODTGkYLIC2IsCNzQhkJU58MAhKFAiGAT4XDQAgaAZx4An4oAALCBBACIQgN2TSJIQWoAFh1MIDBtiTAGkSeAGJS4gQwQj

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:e7c2000000000000
Perceptual Hash:e4a4a1b393939b9a
Difference Hash:0c06000000000000
Wavelet Hash:efe30000f0f0f0f0
Color Hash:#33862d

Other Hashes

Crop Resistant:0c06000000000000

Scan History

Scan history not available

Unable to load historical scan data