ScanMalware.com

Security Scan Report: galala.ru

Redirected to: https://www.reg.ru/domain/shop/lot/galala.ru?rlink=reflink-5095625

Site favicon
Submitted: Dec 26, 2025, 6:06:39 PMCompleted: Dec 26, 2025, 6:06:59 PMpubliccompleted
Loading additional data...

Summary

This website contacted 8 IPs in 2 countries across 11 domains to perform 85 HTTP transactions. The main domain is reg.ru.

Submitted URL: https://galala.ru

Effective URL: https://www.reg.ru/domain/shop/lot/galala.ru?rlink=reflink-5095625Redirected

The Cisco Umbrella rank of the primary domain is #530,481 of the top 1 million websites

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

Confirmed scam site harvesting credentials

Risk Factors
Malicious Indicators of Compromise (suspicious IP)
Credential harvesting login form on a low‑reputation domain
New or unverified domain age
Low ranking in Cisco Umbrella (530,481)
Redirect to unrelated domain marketplace
Domain age information unavailable

Details

Page Title

Домен galala.ru: купить в магазине доменных имен Рег.ру

Scan Type

public

Language

🇷🇺

Russian

(80% confidence)

Category

corporate business

(84%)

Domain Information

The domain name 'galala.ru' uses the Russian country-code top-level domain (.ru) without a subdomain. The registrable portion 'galala' spans 6 characters holding three vowels versus three consonants. Splitting it apart reveals two words: gala, la. Expect three characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://galala.ru

Page Load Overview

1.96s
Total Load Time
92
HTTP Requests
12
Domains
187 KB
Total Size

Language Analysis

Primary Language

🇷🇺Russian
Code: ru
Confidence:80%
Script:Cyrillic
Direction:ltr

Detection Details

Language Code:ru
Detection Confidence:80%
Script Type:Cyrillic
HTML Lang Attribute:ru
Text Length:3,802 chars
Detector Agreement:80%

Website Classification

Primary Category

corporate business84% confidence
Type: spa
Method: ml+structural

All Detected Categories

corporate business
84%
adult content
55%
forum
25%
social_media
20%

Detected Features

Login Form
Search
Comments
OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
155.188.131.77Moscow, Moscow, Russia
AS50340JSC Selectel
11194.67.72.33Russia
AS197695Domain names registrar REG.RU, Ltd
1187.250.250.119Russia
AS13238YANDEX LLC
1137.48.253.6Russia
AS50340JSC Selectel
1134.160.187.150Kansas City, Missouri, United States
AS396982GOOGLE-CLOUD-PLATFORM
11194.67.72.31Russia
AS197695Domain names registrar REG.RU, Ltd
1177.88.21.119Russia
AS13238YANDEX LLC
1131.31.205.95Russia
AS197695Domain names registrar REG.RU, Ltd
928--

Detected Technologies3

X-UA-Compatible
100%
PasswordField
100%
Open-Graph-Protocolvwebsite
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T14054E96160F2343F625785F3D62B6A2AB2055007D6527EC2F6AC87789FC5E835B3720E

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:CAXWHN9OMvnciAtjYHacTnUJ1jAd1x/I9+zubU2hxExY7kNmW5QBXHywfe:Cx5AjQacTnUO1i9T6xYM9QB2

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:282077:peEETAJ0CE5oCUJwIDMIDmIocIMABAgjwhIrgMlMqRZKIgggGIQkJUCggiogpGAAvRCCTkAEF0LDgYgAKBC40BKKwERkElXE

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0edfcfc3f3d3f8d9
Perceptual Hash:fd14d3c5691692d4
Difference Hash:3a36380a2236143b
Wavelet Hash:0e86df83d3d3c8c8
Color Hash:#93571f

Other Hashes

Crop Resistant:3a36380a2236143b

Scan History

Scan history not available

Unable to load historical scan data