ScanMalware.com

Security Scan Report: cardpay.live

Submitted: Dec 20, 2025, 1:10:12 PMCompleted: Dec 20, 2025, 1:11:09 PMpubliccompleted
Loading additional data...

Summary

This website contacted 7 IPs in 1 country across 6 domains to perform 92 HTTP transactions. The main domain is cardpay.live and was registered NaN years ago.

Submitted URL: https://cardpay.live/template-pages/start-here

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

Confirmed phishing scam using brand impersonation on a brand‑new, unranked domain.

Risk Factors
Brand impersonation / typosquatting
Newly registered domain (<7 days)
Unranked domain with low reputation
Domain age information unavailable

Details

Page Title

Start Here - Cardpay - Webflow Ecommerce website template

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

documentation technical

(50%)

Domain Information

The domain name 'cardpay.live' uses the .live top-level domain with no subdomain. The second-level label 'cardpay' is 7 characters long split between two vowels and five consonants. It segments into two words: card, pay. Average segment length settles at 3.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://cardpay.live/template-pages/start-here

Page Load Overview

11.71s
Total Load Time
92
HTTP Requests
6
Domains
2.1 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:9,240 chars
Detector Agreement:100%

Website Classification

Primary Category

documentation technical50% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

documentation technical
50%
education learning
46%
technology software
44%
e-commerce shopping
43%
government public service
25%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
14142.250.186.138United States
AS15169GOOGLE
13104.18.161.117United States
AS13335CLOUDFLARENET
1313.226.247.67United States
AS16509AMAZON-02
13104.18.160.117United States
AS13335CLOUDFLARENET
13216.58.206.42United States
AS15169GOOGLE
13142.250.185.195United States
AS15169GOOGLE
13198.202.211.1United States
AS209242Cloudflare London, LLC
927--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T19393D732F6A85117232F05E9A258B39DD1DF9019CF42AC90F9FD6B8C27CBCE9591460E

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:OP0LNJ8sUsJFr0Yk7HgG06OzV2Uzo/Hgsj3DnllX0i2BQgac:O8LNAbyVzQnlxgn

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:92561:HMAKGVIU0IaDyQQC45cNEdwCTgEAQbVnwIRxbEkCQEGLUTEmQATQZAqIWgKsCGJRALEQQ4IgZBEAUCCiKOCNV5EJic4rH7qo

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:f8f8ffe7e3cfc3ff
Perceptual Hash:f94b4979c7309586
Difference Hash:8383344d4f9e9743
Wavelet Hash:70f8fbc381c180b1
Color Hash:#3a783c

Other Hashes

Crop Resistant:8383344d4f9e9743,454592c4d45b4503,23558fd4dc4b552b

Scan History

Scan history not available

Unable to load historical scan data