ScanMalware.com

Security Scan Report: denaliai.app.box.com

Redirected to: https://denaliai.account.box.com/login

Site favicon
Submitted: Dec 26, 2025, 1:52:02 AMCompleted: Dec 26, 2025, 1:52:25 AMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 1 country across 4 domains to perform 46 HTTP transactions. The main domain is denaliai.account.box.com and was registered NaN years ago.

Submitted URL: https://denaliai.app.box.com

Effective URL: https://denaliai.account.box.com/loginRedirected

The Cisco Umbrella rank of the primary domain is #2,863 of the top 1 million websitesTop 10K Site

AI Security Verdict

High Risk

Confidence: 85%

7
Risk Score

High‑risk phishing page impersonating Box login on a non‑official subdomain.

Risk Factors
Brand impersonation on unusual subdomain
Mismatched form fields (email only on a login page)
Garbage OCR text indicating social engineering
Subdomain not recognized as official Box login domain
Domain age information unavailable

Details

Page Title

Box | Login

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

Domain 'denaliai.app.box.com' uses the commercial generic top-level domain (.com); it also runs on subdomain 'denaliai.app'. The second-level label 'box' is 3 characters long split between one vowel and two consonants. Word splitting yields 1 word: box. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://denaliai.app.box.com

Page Load Overview

5.76s
Total Load Time
29
HTTP Requests
4
Domains
1.4 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:646 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: dynamic
Method: structural

All Detected Categories

No categories detected

Detected Features

Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1174.112.186.157United States
AS396982GOOGLE-CLOUD-PLATFORM
923.52.181.12United States
AS396982
9104.16.144.15United States
AS13335CLOUDFLARENET
293--

Detected Technologies5

X-UA-Compatible
100%
Google Cloud
50%
HTTP/3
40%
HSTS
40%
Google Cloud CDN
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T19F7277535CD434561202E2A9BF266F78E64B4247DA41FE59B3FD120BAF91F228A5302E

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:N0lwr1skAVApkZkraBDoM3+vGDRy7gbYdy8nAbAniHAwGdTYrIlHXu9QrlSmCU2:N0Wr1skAVApkZkraBD73+vGDRyTnCyif

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:16458:YoRgQRMFKfYgAiEADGEIEC4VQAQYkw+ZVAVS4JgCYDLYFQGArBkLJAg1AtjTYIYFAhRwETHCHJQIg4AiDkDkRQRCEpBCJCBI

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:10240c3c00000000
Perceptual Hash:9b4f2c6c6c4d3961
Difference Hash:3249556000000010
Wavelet Hash:00ffe4fc3333f080
Color Hash:#783a67

Other Hashes

Crop Resistant:3249556000000010

Scan History

Scan history not available

Unable to load historical scan data