ScanMalware.com

Security Scan Report: pub-8e8da84c0c9e4664ab96f8efd72cd18c.r2.dev

Submitted: Nov 4, 2025, 2:07:17 AMCompleted: Nov 4, 2025, 2:07:35 AMpubliccompleted
Loading additional data...

Summary

This website contacted 27 IPs in 2 countries across 8 domains to perform 14 HTTP transactions. The main domain is pub-8e8da84c0c9e4664ab96f8efd72cd18c.r2.dev and was registered NaN years ago.

Submitted URL: https://pub-8e8da84c0c9e4664ab96f8efd72cd18c.r2.dev/[email protected]

AI Security Verdict

High Risk

Confidence: 78%

9
Risk Score

Phishing login page on an untrusted domain; likely credential harvesting.

Risk Factors
Credential harvesting form on an untrusted, generic storage domain
Hidden password field indicating possible obfuscation
Brand impersonation on a non‑official domain
Unranked domain with low reputation
Domain age information unavailable

Details

Page Title

Sekure - continue

Scan Type

public

Language

🇺🇸

English

(66% confidence)

Category

unknown

(0%)

Domain Information

Domain 'pub-8e8da84c0c9e4664ab96f8efd72cd18c.r2.dev' uses the developer-focused generic top-level domain (.dev) and includes subdomain 'pub-8e8da84c0c9e4664ab96f8efd72cd18c'. The registrable portion 'r2' spans 2 characters holding 0 vowels versus 1 consonant; bonus characters include one digit. It segments into two words: r, 2. Average segment length settles at one character. 'r' is most common in Chinese (Zhuyin) usage. Usage also turns up in Sinhala and Chinese (Simplified) contexts. Net impression: Chinese (Zhuyin) phrase with character flair.

Screenshot

Security scan screenshot of https://pub-8e8da84c0c9e4664ab96f8efd72cd18c.r2.dev/encofficial.html?44=eriq@sekure.net

Page Load Overview

4.34s
Total Load Time
14
HTTP Requests
8
Domains
332 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:66%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:66%
Script Type:Latin
Text Length:133 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: webapp
Method: structural

All Detected Categories

No categories detected

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
054.210.238.130Ashburn, Virginia, United States
AS14618AMAZON-AES
0142.250.185.227United States
AS15169GOOGLE
0142.251.140.170United States
AS15169GOOGLE
0104.18.50.34United States
AS13335CLOUDFLARENET
0151.101.193.229San Francisco, California, United States
AS54113FASTLY
0104.17.25.14United States
AS13335CLOUDFLARENET
035.170.17.107Ashburn, Virginia, United States
AS14618AMAZON-AES
0142.250.185.164United States
AS15169GOOGLE
0172.67.74.152United States
AS13335CLOUDFLARENET
0151.101.1.229San Francisco, California, United States
AS54113FASTLY
1427--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1AC52A5305FF010167213C7E2B6D2B988E614D917E5870519F0BD3D9C9B83A6BB6AB3B4

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:n62Jm/SZjQ2BsjIjmvw0iAewxjpDdxT4Pi7Hj6H+e9VLKzPYC:n61a9JmIXwtps6zOBVLKjF

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:14375:sSkwoAiUF8YqGImAQASCUcQj9e0K1MB4AoExYgiIYQ1HIAaAEEABwTApYBAQYHKwRAAKlTNABGJBAEKxKD+IRTASkesKBomI

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:N/A
Perceptual Hash:N/A
Difference Hash:N/A
Wavelet Hash:N/A
Color Hash:N/A

Other Hashes

Crop Resistant:N/A

Scan History

Scan history not available

Unable to load historical scan data