ScanMalware.com

Security Scan Report: consultas-abertas.netlify.app

Submitted: Dec 9, 2025, 1:03:30 PMCompleted: Dec 9, 2025, 1:03:55 PMpubliccompleted
Loading additional data...

Summary

This website contacted 42 IPs in 4 countries across 11 domains to perform 28 HTTP transactions. The main domain is consultas-abertas.netlify.app.

Submitted URL: https://consultas-abertas.netlify.app/?utm_source=organic&utm_campaign=&utm_medium=&utm_content=&utm_term=&xcod=&sck=

AI Security Verdict

High Risk

Confidence: 88%

8
Risk Score

Phishing site impersonating Caixa Econômica Federal; treat as high‑risk and do not provide any personal data.

Risk Factors
Brand impersonation on a non‑official, unranked domain
New or unknown domain age
Use of Netlify subdomain for brand‑related content
Domain age information unavailable

Details

Page Title

Consulta de Indenização - Caixa Econômica Federal

Scan Type

public

Language

🇵🇹

Portuguese

(80% confidence)

Category

government public service

(72%)

Domain Information

The domain name 'consultas-abertas.netlify.app' uses the application-focused generic top-level domain (.app), featuring subdomain 'consultas-abertas'. The registrable portion 'netlify' spans 7 characters split between two vowels and 5 consonants. Splitting it apart reveals 3 words: net, li, fy. Expect 2 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://consultas-abertas.netlify.app/?utm_source=organic&utm_campaign=&utm_medium=&utm_content=&utm_term=&xcod=&sck=

Page Load Overview

4.95s
Total Load Time
28
HTTP Requests
11
Domains
450 KB
Total Size

Language Analysis

Primary Language

🇵🇹Portuguese
Code: pt
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:pt
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:pt-BR
Text Length:192 chars
Detector Agreement:100%

Website Classification

Primary Category

government public service72% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

government public service
72%
adult content
68%
finance banking
59%
healthcare medical
26%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2816.15.191.109Ashburn, Virginia, United States
AS14618AMAZON-AES
0216.58.210.131United States
AS15169GOOGLE
0216.58.209.202United States
AS15169GOOGLE
08.47.69.0United States
AS13335CLOUDFLARENET
0157.240.205.11Helsinki, Uusimaa, Finland
AS32934FACEBOOK
08.6.112.0United States
AS13335CLOUDFLARENET
063.176.8.218Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
0157.240.205.35Helsinki, Uusimaa, Finland
AS32934FACEBOOK
035.157.26.135Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
034.143.76.2United States
AS396982GOOGLE-CLOUD-PLATFORM
2842--

Detected Technologies4

X-UA-Compatible
100%
JQueryv3.2.1
100%
Netlify
40%
HSTS
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T15892E88A2D6370721A3361789BB7938A35748407B813CD1ABEDC8350DF88ED889D779D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:+cJHKsAYP0lfumGIKewj8R2r2cXZuawHo:dFPAYP0lfumGIKPXZkHo

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:20455:AAPvNhNPAACUQotAWRQQKIIzPbiALhgFCgMkxwRYkgm7BAAzqgorVuMCPMgMQJEtEchqKiIFQRESHGVymhAAIIECgTMoIFBE

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:N/A
Perceptual Hash:N/A
Difference Hash:N/A
Wavelet Hash:N/A
Color Hash:N/A

Other Hashes

Crop Resistant:N/A

Scan History

Scan history not available

Unable to load historical scan data