Security Scan Report: agj-zrb-biz-kpu-nax-sp12ct3.pages.dev

Submitted: Mar 12, 2026, 4:03:52 PMCompleted: Mar 12, 2026, 4:05:00 PMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 1 country across 2 domains to perform 6 HTTP transactions. The main domain is agj-zrb-biz-kpu-nax-sp12ct3.pages.dev and was registered NaN years ago.

Submitted URL: https://agj-zrb-biz-kpu-nax-sp12ct3.pages.dev/

AI Security Verdict

Low Risk

Confidence: 92%

3
Risk Score

The site is flagged by Cloudflare and ML analysis as a phishing page; treat as high‑risk and avoid any interaction.

Risk Factors
Cloudflare phishing warning (strong external threat indicator)
Unranked / low‑reputation domain
Subdomain on pages.dev with unknown age
High ML phishing confidence
Absence of legitimate content – page only displays phishing warning
Safety Factors
No concrete malicious signal (no IoC / YARA / Safe-Browsing / IDS / credential form / brand impersonation) — elevated risk rested on domain age or reputation alone; clamped from 7 to 3
Domain age information unavailable

Details

Primary Scan Blocked — Fallback Capture Shown

The primary scanner could not load this page (possible bot protection). The screenshot and page details shown were captured by a fallback browser that loaded the page successfully.

Page Title

Suspected phishing site | Cloudflare

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

phishing scam

(94%)

Domain Information

The domain name 'agj-zrb-biz-kpu-nax-sp12ct3.pages.dev' uses the developer-focused generic top-level domain (.dev); it also runs on subdomain 'agj-zrb-biz-kpu-nax-sp12ct3'. Its registrable label 'pages' stretches across 5 characters containing two vowels alongside three consonants. Tokenizing the label suggests one word: pages. Median word length comes out to five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://agj-zrb-biz-kpu-nax-sp12ct3.pages.dev/

Page Load Overview

0.27s
Total Load Time
6
HTTP Requests
2
Domains
0 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:378 chars
Detector Agreement:100%

Website Classification

Primary Category

phishing scam94% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

phishing scam
94%
technology software
29%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
3104.18.94.41United States
AS13335Cloudflare, Inc.
3188.114.96.3United States
AS13335Cloudflare, Inc.
62--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T194915367BABD107F109392B262BD77097AA1C007DB9609903ABCC2755F4EF95AD132C1

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

96:PjnjtjuiADa/D+DMFBzLeiO/t8A2uvnRY3vaQxvb0:PjnjtjuiEa/SoFnOVsuvnO3Cej0

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:4447:AABCIJAAAAQDAJAoghAAJFUUQAZEAAAAAEyQAoBHFMIBISwAAMEIAIAMAAkMgDAAAcECAHAEEwAAhAiAyQAIBAACQAQRAAAq

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ff8787ffc7ffffff
Perceptual Hash:b83898c3c3c7ce3c
Difference Hash:203c3c0414000000
Wavelet Hash:9f879fc3c0fcc0c0
Color Hash:#63ac53

Other Hashes

Crop Resistant:203c3c0414000000

Scan History

Scan history not available

Unable to load historical scan data