ScanMalware.com

Security Scan Report: rakuten.pages.dev

Redirected to:
https://www.xmtrading.com/jp/?utm_source=&utm_content=684187&utm_mediu...
Submitted: Apr 23, 2026, 12:49:56 AMCompleted: Apr 23, 2026, 12:51:39 AMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 2 countries across 2 domains to perform 4 HTTP transactions. The main domain is xmtrading.com and was registered NaN years ago.

Submitted URL: https://rakuten.pages.dev/

Effective URL: https://www.xmtrading.com/jp/?utm_source=&utm_content=684187&utm_medium=affiliate&clickid=75dfdec1-e1c1-4ff4-be65-46aea43d271bRedirected

AI Security Verdict

High Risk

Confidence: 88%

7
Risk Score

The site impersonates the XMTrading brand on an unranked, newly‑created subdomain, includes a malicious IP indicator and multiple redirects, yielding a high‑risk rating.

Risk Factors
Brand impersonation without matching domain
Unranked / low‑reputation domain
Unknown subdomain creation date (potentially brand‑new)
External malicious IP indicator
Multiple redirects
Domain age information unavailable

Details

Page Title

clicks.affstrack.com

Scan Type

public

Language

🇯🇵

Japanese

(80% confidence)

Category

education learning

(76%)

Domain Information

The domain name 'rakuten.pages.dev' uses the developer-focused generic top-level domain (.dev), featuring subdomain 'rakuten'. The second-level label 'pages' is 5 characters long with 2 vowels and 3 consonants. It segments into one word: pages. Average segment length settles at 5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://rakuten.pages.dev/

Page Load Overview

11.81s
Total Load Time
269
HTTP Requests
22
Domains
13.0 MB
Total Size

Language Analysis

Primary Language

🇯🇵Japanese
Code: ja
Confidence:80%
Script:Mixed
Direction:ltr

Detection Details

Language Code:ja
Detection Confidence:80%
Script Type:Mixed
HTML Lang Attribute:ja
Text Length:4,878 chars
Detector Agreement:80%

Website Classification

Primary Category

education learning76% confidence
Type: static
Method: ml+structural

All Detected Categories

education learning
76%
corporate business
57%
finance banking
38%
documentation technical
35%
social media network
30%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
13523.36.162.208Japan
AS15169
134188.114.97.3United States
AS13335Cloudflare, Inc.
2692--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T17F048F77329A063986558498F05B43099F20B143F506C9BCB9BCBAD9BFDED06107BB78

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:QfQho9PKBb9Js3q9Jzbs6tlg3SBKwdQWgceIszj2bMy8Oldn:bhoC9JSqzzbs6o3Sj3gcrsf2eA1

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:184561:6ioWwFCyBDAFiCFiIzwT5mBAOzqyQIOIkJBCrQEEmZydmAq4BIIrEG7rgagYCkm4HZAGVABASdkUKoUgTAkgiBADSAQAL0yB

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffcfc3c7ffffffff
Perceptual Hash:b131cccccc673363
Difference Hash:00180c1400000000
Wavelet Hash:fcdcc0cc00000000
Color Hash:#87c588

Other Hashes

Crop Resistant:00180c1400000000

Scan History

Scan history not available

Unable to load historical scan data