Security Scan Report: hallswater.vsax.net

Redirected to:
https://hallswater.vsax.net/app/
Site favicon
Submitted: Jun 1, 2026, 3:33:08 PMCompleted: Jun 1, 2026, 3:34:18 PMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 2 HTTP transactions. The main domain is hallswater.vsax.net and was registered NaN years ago.

Submitted URL: https://hallswater.vsax.net

Effective URL: https://hallswater.vsax.net/app/Redirected

The Cisco Umbrella rank of the primary domain is #19,409 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

The site mimics Kaseya's login page, collects credentials on an unrelated domain, indicating a high‑risk brand impersonation phishing site.

Risk Factors
Credential collection on unrelated domain
Brand impersonation without official affiliation
Subdomain vs official brand domain
Domain age information unavailable

Details

Page Title

N/A

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

social_media

(50%)

Domain Information

Within the network infrastructure generic top-level domain (.net), 'hallswater.vsax.net' is registered with subdomain 'hallswater'. The second-level label 'vsax' is 4 characters long with one vowel and 3 consonants. Tokenizing the label suggests 2 words: v, sax. Median word length comes out to two characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://hallswater.vsax.net

Page Load Overview

0.49s
Total Load Time
27
HTTP Requests
7
Domains
134 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:145 chars
Detector Agreement:50%

Website Classification

Primary Category

social_media50% confidence
Type: webapp
Method: structural

All Detected Categories

social_media
50%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
27104.18.42.116United States
AS13335Cloudflare, Inc.
271--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T151323E91CE08AD2F3603C5FA75F0EB0CADB19229CA0606C8D77D2DC96FDDD10895EA91

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:7KqE3Mz8MYG1Ngn4626xXkwucOBP6+63MoGM84Y4Ih7XnIWwbJqGgh:u3pMYG1I/PIN3Idtgh

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:11537:EUCCAhBAJiIrAFIC1sJ5J8gohLSAEYQwE6BAFWYE4MQsD+BhgBdqRBDMLkQLcocxCAnSDxQGEIUBBE4oiUxAWoCgBKwF00a4

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:1800000000000000
Perceptual Hash:cccccccccccccccc
Difference Hash:1000000000000000
Wavelet Hash:3b33333300000000
Color Hash:#4c862d

Other Hashes

Crop Resistant:1000000000000000

Scan History

Scan history not available

Unable to load historical scan data