ScanMalware.com

Security Scan Report: www.collectwin.com

Submitted: Nov 25, 2025, 2:06:27 PMCompleted: Nov 25, 2025, 2:09:14 PMpubliccompleted
Loading additional data...

Summary

This website contacted 40 IPs in 2 countries across 15 domains to perform 59 HTTP transactions. The main domain is collectwin.com and was registered NaN years ago.

Submitted URL: https://www.collectwin.com/ny-symbols/app/info-page.html

AI Security Verdict

High Risk

Confidence: 92%

9
Risk Score

Page impersonates NY Lottery and harvests credentials; treat as phishing.

Risk Factors
Credential harvesting form with hidden password field
Brand impersonation of New York Lottery on an unrelated domain
Unranked domain presenting a well‑known brand
Domain age information unavailable

Details

Page Title

Collect N Win

Scan Type

public

Language

🇺🇸

English

(74% confidence)

Category

entertainment media

(68%)

Domain Information

You're looking at domain 'www.collectwin.com' on the commercial generic top-level domain (.com), featuring subdomain 'www'. The second-level label 'collectwin' is 10 characters long containing 3 vowels alongside 7 consonants. Splitting it apart reveals 2 words: collect, win. The median word length lands at five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.collectwin.com/ny-symbols/app/info-page.html

Page Load Overview

1.65s
Total Load Time
59
HTTP Requests
15
Domains
1.3 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:74%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:74%
Script Type:Latin
Text Length:45,868 chars
Detector Agreement:100%

Website Classification

Primary Category

entertainment media68% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

entertainment media
68%
technology software
66%
gambling betting
66%
government public service
56%
news media journalism
52%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2816.146.141.226United States
AS16509AMAZON-02
9146.75.120.217Frankfurt am Main, Hesse, Germany
AS54113FASTLY
3142.250.186.163United States
AS15169GOOGLE
3142.250.185.168United States
AS15169GOOGLE
2142.250.186.110United States
AS15169GOOGLE
2162.159.128.61United States
AS13335CLOUDFLARENET
2162.159.138.60United States
AS13335CLOUDFLARENET
2104.17.24.14United States
AS13335CLOUDFLARENET
252.92.179.106Boardman, Oregon, United States
AS16509AMAZON-02
1216.239.34.36United States
AS15169GOOGLE
5940--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T10EA3B816B6F0137304D31290BB287F5BAFAE942B931B0658345E827D1FC2DD69A7329D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:dX/kGU2RJR3DvXc348JkKkZOls7n3aFU0zGdiZsbssc:N5Us/TIls7n3aFUmGdiZs4sc

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:104298:mBEEiIYaPg4gASJAIAELVbooAkUhqLUKwAASBcBBQnBegLwx4UgjRgyEgUTqRgKEBqBMhwCeAAAhAlMNNFwMACJgogAClqpx

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00007e7e7e7e7e7e
Perceptual Hash:946f2b3a2e2f85d0
Difference Hash:238280b2b2bababa
Wavelet Hash:00007e7e7e0e7e3e
Color Hash:#78753a

Other Hashes

Crop Resistant:b3b3b4b4b4b4b4b3,aab20b2b2b33c8a2,82c0b3707a5a5a7a,238280b2b2bababa

Scan History

Scan history not available

Unable to load historical scan data