ScanMalware.com

Security Scan Report: survey2.medallia.eu

Site favicon
Submitted: May 9, 2026, 8:10:21 AMCompleted: May 9, 2026, 8:11:32 AMpubliccompleted
Loading additional data...

Summary

This website contacted 7 IPs in 2 countries across 4 domains to perform 10 HTTP transactions. The main domain is survey2.medallia.eu.

Submitted URL: https://survey2.medallia.eu/?ev3k7sd6r99m83bdc39pht&reject=yes

The Cisco Umbrella rank of the primary domain is #13,604 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 85%

7
Risk Score

The site shows multiple high‑risk indicators (critical IDS alerts, heavy JS obfuscation, unknown age with a form) and should be treated as unsafe.

Risk Factors
Unknown domain age
Presence of a form on a newly‑registered subdomain
Critical IDS alerts indicating possible malware data exfiltration
High JavaScript obfuscation and dynamic code generation
Moderate domain reputation (rank 13,604)
Domain age information unavailable

Details

Page Title

Survey

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

adult content

(38%)

Domain Information

The domain name 'survey2.medallia.eu' uses the .eu country-code top-level domain, featuring subdomain 'survey2'. The registrable portion 'medallia' spans 8 characters split between four vowels and 4 consonants. Tokenizing the label suggests two words: medal, lia. Median word length is 4 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://survey2.medallia.eu/?ev3k7sd6r99m83bdc39pht&reject=yes

Page Load Overview

0.97s
Total Load Time
10
HTTP Requests
4
Domains
56 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:124 chars
Detector Agreement:100%

Website Classification

Primary Category

adult content38% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

adult content
38%
news media journalism
33%
healthcare medical
32%
government public service
28%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
465.9.175.57United States
AS16509Amazon.com, Inc.
165.9.175.124United States
AS16509Amazon.com, Inc.
1146.75.121.137Frankfurt am Main, Hesse, Germany
AS54113Fastly, Inc.
1146.75.121.230Frankfurt am Main, Hesse, Germany
AS54113Fastly, Inc.
165.9.175.25United States
AS16509Amazon.com, Inc.
1147.75.180.92United States
AS30109Medallia Inc.
165.9.175.80United States
AS16509Amazon.com, Inc.
107--

Detected Technologies2

X-UA-Compatible
100%
HSTS
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T14DB22A2D6B85223E09126385B27BFF7577D2807AB30C4D84588C426C36E1D86BB6FBD5

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:O1WTOTJpaPwJZZt1foUKZVUvd69oczo1z8lEP53jtDyBpe6ze4ytNKAx2NgxGBE9:RSd8PwJnVK865lsDMpeP4n1NgEB4UQB

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:24293:RJuQBchAgIMRmeFvVCCgtkQcMkMyiGZMGDyIIAiAIgsLkBKQRESYExiUDIigWMjFDLwGBAQAgYg0AQyU8YAHpyHDXaFIwW0d

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:c7c3ffffffffffff
Perceptual Hash:b8383838189cdddf
Difference Hash:b41c000000000000
Wavelet Hash:ce00cece02020202
Color Hash:#753a78

Other Hashes

Crop Resistant:b41c000000000000

Scan History

Scan history not available

Unable to load historical scan data