ScanMalware.com

Security Scan Report: api.nrjnet.de

Redirected to: https://api.nrjnet.de/login

Submitted: Apr 3, 2026, 9:53:41 PMCompleted: Apr 3, 2026, 9:55:01 PMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 7 HTTP transactions. The main domain is api.nrjnet.de.

Submitted URL: https://api.nrjnet.de

Effective URL: https://api.nrjnet.de/loginRedirected

AI Security Verdict

High Risk

Confidence: 85%

8
Risk Score

Login page on an unknown, unranked domain likely phishing – do not enter credentials.

Risk Factors
Credential collection on an unknown, unranked domain
Unknown domain age (treated as newly registered)
Unranked domain with a login form
Domain age information unavailable

Details

Page Title

Log in! | ENERGY

Scan Type

public

Language

🇩🇪

German

(64% confidence)

Category

news media journalism

(58%)

Domain Information

Within the German country-code top-level domain (.de), 'api.nrjnet.de' is registered and includes subdomain 'api'. The core label 'nrjnet' covers 6 characters split between one vowel and 5 consonants. Breaking it apart gives 3 words: nr, j, net. Median word length is 2 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://api.nrjnet.de

Page Load Overview

0.57s
Total Load Time
7
HTTP Requests
1
Domains
8 KB
Total Size

Language Analysis

Primary Language

🇩🇪German
Code: de
Confidence:64%
Script:Latin
Direction:ltr

Detection Details

Language Code:de
Detection Confidence:64%
Script Type:Latin
HTML Lang Attribute:en
Text Length:62 chars
Detector Agreement:100%
Language mismatch: Declared as en but detected as de

Website Classification

Primary Category

news media journalism58% confidence
Type: webapp
Method: ml+structural

All Detected Categories

news media journalism
58%
government public service
57%
forum community discussion
52%
social media network
38%
adult content
35%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
7188.114.97.3United States
AS13335Cloudflare, Inc.
71--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1E6512E2000F0493614A2C4E469F4AE167EE4C613C76F58403AFC1BD99FD6C839E1339C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

24:hmnwDlcY61dIgHdUNFSJ4Sifwy8/jWBKLNEN9I7tBUX2qOPXPJgmsOQVaj:1lJWHagJDifj8RaHYIQ6Cj

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:2839:AACAAAAAAIAAAQEAACCBAAAABEGIBIACgAAQJFIHKABCgAAEAAIAEApAQMQEABEAAAAAAAAQAAAAAAAAAAEAAAJCEABAAggQ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffe7e7ffe7e7ffff
Perceptual Hash:b3cccc2399996633
Difference Hash:000c0c104c4d0008
Wavelet Hash:e3c3c3c30303033f
Color Hash:#87c58b

Other Hashes

Crop Resistant:000c0c104c4d0008

Scan History

Scan history not available

Unable to load historical scan data