ScanMalware.com

Security Scan Report: temp.mexicanfibers.mx

Site favicon
Submitted: Dec 10, 2025, 3:49:40 AMCompleted: Dec 10, 2025, 3:50:24 AMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 2 countries across 3 domains to perform 13 HTTP transactions. The main domain is temp.mexicanfibers.mx and was registered NaN years ago.

Submitted URL: https://temp.mexicanfibers.mx/wp-admin/server../renew/

AI Security Verdict

Confirmed Scam

Confidence: 92%

9
Risk Score

Phishing site impersonating Microsoft; high risk and confirmed scam.

Risk Factors
Brand impersonation of Microsoft on an unranked domain
Compromised WordPress site used for phishing
Email‑only harvesting form presented as a protected document download
Unranked domain claiming a major brand
Domain age information unavailable

Details

Page Title

One Drive

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(80%)

Domain Information

You're looking at domain 'temp.mexicanfibers.mx' on the Mexican country-code top-level domain (.mx) and includes subdomain 'temp'. The core label 'mexicanfibers' covers 13 characters holding 5 vowels versus eight consonants. Splitting it apart reveals two words: mexican, fibers. Median word length is 6.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://temp.mexicanfibers.mx/wp-admin/server../renew/

Page Load Overview

19.32s
Total Load Time
13
HTTP Requests
3
Domains
3.8 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:287 chars
Detector Agreement:50%

Website Classification

Primary Category

technology software80% confidence
Type: static
Method: ml+structural

All Detected Categories

technology software
80%
download file sharing
78%
government public service
52%
adult content
36%
documentation technical
36%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
5142.250.184.234United States
AS15169GOOGLE
2142.250.185.195United States
AS15169GOOGLE
2162.241.62.126United States
AS19871NETWORK-SOLUTIONS-HOSTING
22a00:1450:4001:c13::5fFrankfurt am Main, Hesse, Germany
AS15169GOOGLE
22a00:1450:4001:831::2003Frankfurt am Main, Hesse, Germany
AS15169GOOGLE
135--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1BD316615C0F7851B8141D1D17DA6FD062DC0C60BE7199820786D4EAD2FD2F16CDEB65C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

24:nB5CWXqc+c6CL2vHVQ7MNVY+wVO6HgkegMGfxhP+TzT/PWDEDNyJA/qI/bNRWyP4:nBvdL2vov+2HTegDxEfPkIyA/jbLxQ

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:1516:QBAQIABABAAIsAABCAAAAAAIAAAgAAIIgAAAAIAQGABAAAgAAAIAAAAQAIkAAAEAAAAAACAAIIAAIFAAgAgAEGABABACACAA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:07071f1f07071f07
Perceptual Hash:88993666db996666
Difference Hash:ffffb3b3edeff3ff
Wavelet Hash:0f071f1f071f070f
Color Hash:#ac5397

Other Hashes

Crop Resistant:ffffb3b3edeff3ff

Scan History

Scan history not available

Unable to load historical scan data