Security Scan Report: www.grp.vwhub.com

Redirected to:
https://grp.volkswagenag.com/isam/sps/authsvc/policy/grpuidpw?Target=h...
Site favicon
Submitted: Jun 17, 2026, 9:40:18 PMCompleted: Jun 17, 2026, 9:41:26 PMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 2 countries across 2 domains to perform 1 HTTP transaction. The main domain is grp.volkswagenag.com and was registered NaN years ago.

Submitted URL: https://www.grp.vwhub.com

Effective URL: https://grp.volkswagenag.com/isam/sps/authsvc/policy/grpuidpw?Target=https://grp.volkswagenag.com/isam/sps/globalb2x/saml20/logininitial%3FRequestBinding%3DHTTPPost%26PartnerId%3Dhttps%3A//grp.global.volkswagenag.com/isam/sps/spglobal/saml20%26Target%3Dhttps%3A//grp.global.volkswagenag.com/Redirected

The Cisco Umbrella rank of the primary domain is #148,537 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 88%

8
Risk Score

The site impersonates Volkswagen AG, collects login credentials on an unrelated, low‑rank domain, indicating a high‑risk phishing page.

Risk Factors
Brand impersonation of Volkswagen AG
Credential collection forms on unrelated domain
Low Cisco Umbrella ranking for a site claiming a major brand
Multiple password fields
Cross‑origin form submission to official brand domain
Domain age information unavailable

Details

Page Title

GRP Login Page

Scan Type

public

Language

🇺🇸

English

(51% confidence)

Category

documentation technical

(47%)

Domain Information

The domain 'www.grp.vwhub.com' uses the commercial generic top-level domain (.com) and includes subdomain 'www.grp'. The core label 'vwhub' covers 5 characters holding 1 vowel versus four consonants. Segmentation suggests 2 words: vw, hub. Median word length comes out to 2.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.grp.vwhub.com

Page Load Overview

2.23s
Total Load Time
19
HTTP Requests
3
Domains
20 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:51%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:51%
Script Type:Latin
Text Length:485 chars
Detector Agreement:100%

Website Classification

Primary Category

documentation technical47% confidence
Type: webapp
Method: ml+structural

All Detected Categories

documentation technical
47%
technology software
37%
government public service
34%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1034.253.6.206Dublin, Leinster, Ireland
AS16509Amazon.com, Inc.
9199.5.47.217Rochester, Michigan, United States
AS3458Volkswagen Group of America, Inc.
192--

Detected Technologies4

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T15832A920A5E14C3381A359AD5A92530E7D38C553C61ECE0C79FC8BD85F53E83CD67A5A

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:fxwHdr5QO+9+fJdjN3ZwijTbIJmJAa/SX9rLdoLiEi2iEiaWioICiRINieIIitq0:fxUr+ofnwuEBJ6ti2iEiaWioXiReie7k

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:11308:gMRgGFsFAcjSS5EA8ASQCycYUOHGEhQKFAIIG5IClASIlBNRoQIhAAXo4OBRSCGhyjoAh9iUAACUwWQ0OgLSpIpiAKAIIA8m

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0000ffffffff0000
Perceptual Hash:929b6c6566999999
Difference Hash:0b496169691640cc
Wavelet Hash:0000ffffffff0000
Color Hash:#78743a

Scan History

Scan history not available

Unable to load historical scan data