ScanMalware.com

Security Scan Report: newmygreenwaycom.webim2.ru

Redirected to: https://login.webim.ru/operator/signin?redir=/agent/

Site favicon
Submitted: Dec 26, 2025, 9:49:16 PMCompleted: Dec 26, 2025, 9:49:35 PMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 1 country across 2 domains to perform 41 HTTP transactions. The main domain is login.webim.ru.

Submitted URL: https://newmygreenwaycom.webim2.ru

Effective URL: https://login.webim.ru/operator/signin?redir=/agent/Redirected

The Cisco Umbrella rank of the primary domain is #482,340 of the top 1 million websites

AI Security Verdict

Confirmed Scam

Confidence: 95%

9
Risk Score

New, low‑rank domain with hidden password field and login form – confirmed phishing scam.

Risk Factors
Hidden password field
Newly registered domain (<7 days)
Credential harvesting form on untrusted domain
Low ranking domain impersonating a known service
Suspicious redirect chain
Domain age information unavailable

Details

Page Title

Webim - Вход

Scan Type

public

Language

🇷🇺

Russian

(80% confidence)

Category

technology software

(72%)

Domain Information

The domain name 'newmygreenwaycom.webim2.ru' uses the Russian country-code top-level domain (.ru); it also runs on subdomain 'newmygreenwaycom'. The core label 'webim2' covers 6 characters split between 2 vowels and three consonants, along with one digit. Tokenizing the label suggests three words: web, im, 2. Average segment length settles at two characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://newmygreenwaycom.webim2.ru

Page Load Overview

2.53s
Total Load Time
40
HTTP Requests
2
Domains
889 KB
Total Size

Language Analysis

Primary Language

🇷🇺Russian
Code: ru
Confidence:80%
Script:Cyrillic
Direction:ltr

Detection Details

Language Code:ru
Detection Confidence:80%
Script Type:Cyrillic
HTML Lang Attribute:ru
Text Length:431 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software72% confidence
Type: webapp
Method: ml+structural

All Detected Categories

technology software
72%
news media journalism
61%
phishing scam
61%
government public service
59%
adult content
54%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2091.142.90.134St Petersburg, St.-Petersburg, Russia
AS41722Miran Ltd.
20188.68.222.197St Petersburg, St.-Petersburg, Russia
AS49505JSC Selectel
402--

Detected Technologies1

PasswordField
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1E27284532CF5B8170622A0F9EAB4AB18EC93E25FC5865D50B0ED06E91FD6F929C0312D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

96:ge+GM8mzNq2P19jxD/eeg54Qo35pFkSdNw9kma3is3KRjqmC5LWGNUvED1UCsB6d:gg2VtJeeg54QWKSdNPQjqfZ/D1GHO

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:16495:jGOIQogAKZCqCnkBDGi5RRCAC8saCQZFlVbMICSyoG5CgkCCa8BKihgSwCCBBHCCSQpUwWDLowDGcIUQEhIhVwXighyUYIJA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:7cf7ffefefefff00
Perceptual Hash:d3d4545651d456d6
Difference Hash:a4052858480810c8
Wavelet Hash:7e811b0bcbcbf100
Color Hash:#4d3a78

Other Hashes

Crop Resistant:a4052858480810c8

Scan History

Scan history not available

Unable to load historical scan data