ScanMalware.com

Security Scan Report: snapcht-zxd.pages.dev

Redirected to: https://www.citasbonitas.com/aff.php?_disAL=true&btUrl=aHR0cHM6Ly9jZC10by1naC5jb20vdGRzL2FlL2NiL3MvMTlkYTJkY2E4YjkxZjRhM2Y3MDM3MjQ0NTRiOGY5NTM%2FX190PTE3NzQyMDYzMzg0MjEmX19sPTM2MDAmX19jPWQzODdkNWY0MzQ2M2M0NWI4ZTNjZmMwNzg0MDdhMjA1ZDc0MDVmZDA%3D&data2=rtxgg69c03d820008e6cd&data3=%7Bdata3%7D&dci=aa3d4661da0cc48a02265df1e0dabc470541ddca&dynamicpage=all_alp_mst_lpjmap_a3_sec&gf=2107&p_tds_cid=&s1=int&s3=2023677&tdsId=b6623koz_lp_b_1772708384739_cb&tds_ac_id=s5679yal&tds_ao=1&tds_campaign=b6623koz&tds_cid=d387d5f43463c45b8e3cfc078407a205d7405fd0&tds_host=cd-to-gh.com&tds_id=b6623koz_lp_b_1772708384739_cb&tds_oid=33341747&tds_path=%2Ftds%2Fae&tds_ps=b&tds_reason=direct&utm_campaign=cf29322b&utm_content=18151&utm_ex=b&utm_funnel=tds&utm_source=int&utm_term=2

Submitted: Mar 22, 2026, 7:05:34 PMCompleted: Mar 22, 2026, 7:06:53 PMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 2 countries across 5 domains to perform 36 HTTP transactions. The main domain is citasbonitas.com and was registered NaN years ago.

Submitted URL: https://snapcht-zxd.pages.dev/&x=1

Effective URL: https://www.citasbonitas.com/aff.php?_disAL=true&btUrl=aHR0cHM6Ly9jZC10by1naC5jb20vdGRzL2FlL2NiL3MvMTlkYTJkY2E4YjkxZjRhM2Y3MDM3MjQ0NTRiOGY5NTM%2FX190PTE3NzQyMDYzMzg0MjEmX19sPTM2MDAmX19jPWQzODdkNWY0MzQ2M2M0NWI4ZTNjZmMwNzg0MDdhMjA1ZDc0MDVmZDA%3D&data2=rtxgg69c03d820008e6cd&data3=%7Bdata3%7D&dci=aa3d4661da0cc48a02265df1e0dabc470541ddca&dynamicpage=all_alp_mst_lpjmap_a3_sec&gf=2107&p_tds_cid=&s1=int&s3=2023677&tdsId=b6623koz_lp_b_1772708384739_cb&tds_ac_id=s5679yal&tds_ao=1&tds_campaign=b6623koz&tds_cid=d387d5f43463c45b8e3cfc078407a205d7405fd0&tds_host=cd-to-gh.com&tds_id=b6623koz_lp_b_1772708384739_cb&tds_oid=33341747&tds_path=%2Ftds%2Fae&tds_ps=b&tds_reason=direct&utm_campaign=cf29322b&utm_content=18151&utm_ex=b&utm_funnel=tds&utm_source=int&utm_term=2Redirected

AI Security Verdict

Moderate Risk

Confidence: 78%

5
Risk Score

Adult dating site with credential forms on a new subdomain; moderate risk, proceed carefully.

Risk Factors
Credential harvesting form on a newly created subdomain
Obscured password input field
Adult content used as social‑engineering lure
Safety Factors
No malicious Indicators of Compromise detected
No JavaScript malware patterns found
No network IDS alerts
HTTPS connection (implied by final URL)
Final destination domain citasbonitas.com appears to host the service
Domain age information unavailable

Details

Page Title

CitasBonitas

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

adult content

(87%)

Domain Information

You're looking at domain 'snapcht-zxd.pages.dev' on the developer-focused generic top-level domain (.dev), featuring subdomain 'snapcht-zxd'. The core label 'pages' covers 5 characters containing two vowels alongside three consonants. Breaking it apart gives 1 word: pages. Average segment length settles at five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://snapcht-zxd.pages.dev/&x=1

Page Load Overview

3.88s
Total Load Time
36
HTTP Requests
5
Domains
487 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:3,685 chars
Detector Agreement:100%

Website Classification

Primary Category

adult content87% confidence
Type: webapp
Method: ml+structural

All Detected Categories

adult content
87%
social media network
50%
entertainment media
45%
forum community discussion
42%
blog personal website
34%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
8172.67.198.35United States
AS13335Cloudflare, Inc.
752.19.138.177Dublin, Leinster, Ireland
AS16509Amazon.com, Inc.
7104.21.60.163United States
AS13335Cloudflare, Inc.
73.174.46.5United States
AS16509Amazon.com, Inc.
7188.114.97.3United States
AS13335Cloudflare, Inc.
365--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1C70321707CB1D83300AB5DD199A94B1B2FE5A317C9170944B3BC47E81FEAE01EE6B265

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:CKE12lf9XtD/Gy9CrQRXJleHrwjZ4gbzWoh/oA:CKtlfqr6leEuAzL/oA

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:38984:YE0Q1wJUhABgkEI6EiAARhsDAAjVUwAEYkGgbHJDBA0iQZkAnhACK0E2hTgExEiAR4Qg4kIAIkACgWYtKAIBwzCBcIFAAIQ8

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:fffffff7ffff0000
Perceptual Hash:d5e6098b26a6d959
Difference Hash:4a5290c4d0d06010
Wavelet Hash:ffbae4e6fa660000
Color Hash:#67931f

Other Hashes

Crop Resistant:4a5290c4d0d06010

Scan History

Scan history not available

Unable to load historical scan data