ScanMalware.com

Security Scan Report: abcxqyen.pages.dev

Redirected to:
https://fie.nl.tab.digital/login
Submitted: Apr 16, 2026, 5:49:02 AMCompleted: Apr 16, 2026, 5:50:20 AMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 1 country across 2 domains to perform 27 HTTP transactions. The main domain is fie.nl.tab.digital and was registered NaN years ago.

Submitted URL: http://abcxqyen.pages.dev/

Effective URL: https://fie.nl.tab.digital/loginRedirected

AI Security Verdict

Moderate Risk

Confidence: 95%

5
Risk Score

The site impersonates Nextcloud, uses a login form on a newly created subdomain, and redirects to another domain, indicating a high‑risk credential phishing attempt.

Risk Factors
Brand impersonation (brand mismatch)
Credential collection on unknown‑age subdomain
Unranked domain reputation
Redirect chain to a different domain
Hosting platform subdomain with unknown creation date
Safety Factors
Established domain (3083 days old) with no strong malicious indicators — risk clamped from 8 to 5
Domain age information unavailable

Details

Page Title

Login – Nextcloud

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(34%)

Domain Information

Domain 'abcxqyen.pages.dev' uses the developer-focused generic top-level domain (.dev) and includes subdomain 'abcxqyen'. Its registrable label 'pages' stretches across 5 characters with 2 vowels and 3 consonants. Splitting it apart reveals one word: pages. The median word length lands at 5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://abcxqyen.pages.dev/

Page Load Overview

4.08s
Total Load Time
27
HTTP Requests
2
Domains
142 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:379 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software34% confidence
Type: webapp
Method: ml+structural

All Detected Categories

technology software
34%
corporate
25%

Detected Features

Login Form
Search
OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
14172.66.45.19United States
AS13335Cloudflare, Inc.
13172.67.130.170United States
AS13335Cloudflare, Inc.
272--

Detected Technologies2

PasswordField
100%
Vue.js
30%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1AC259EF26C4835367A27C319308F966A331BB1035D21568DD4CE71890FFABED62B257A

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

12288:403yNBFZtB4b6chxpBOSabYKgPZtB4bSUDqNkg2EeFlqkX2u037Ii:KB/t3ctkVi

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:999962:jQzlwmAIohAyQJopAGSGIHMOiINQJF8DYkuFQaERQbAFGkBKgMTUKwAEwgigKDQw4iSKZAVTBBIxm4NAEEABJIGiUwHIDlFm

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:008058d8ffdbc026
Perceptual Hash:d87b277a87408c73
Difference Hash:5533b29191b393ce
Wavelet Hash:008058fdffffc026
Color Hash:#3dd22d

Other Hashes

Crop Resistant:1393929292938eea,f3fffffcffffffff,6c6c5e9636c6cfe7,5533b29191b393ce,e7cf9f2f0f4f03f1,f0d3d8cfdfff7fff

Scan History

Scan history not available

Unable to load historical scan data