ScanMalware.com

Security Scan Report: bnmaxempresas.online

Redirected to: https://bana-main-mfukxv.laravel.cloud/

Submitted: Jan 22, 2026, 8:26:42 PMCompleted: Jan 22, 2026, 8:28:05 PMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 2 countries across 5 domains to perform 89 HTTP transactions. The main domain is bana-main-mfukxv.laravel.cloud and was registered NaN years ago.

Submitted URL: http://bnmaxempresas.online/

Effective URL: https://bana-main-mfukxv.laravel.cloud/Redirected

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

High‑risk phishing site impersonating Banamex and harvesting passwords without a username field.

Risk Factors
Password field without username (credential harvesting)
Impersonation of Banamex on an unrelated domain
Unranked domain presenting a financial brand
Domain age information unavailable

Details

Page Title

N/A

Scan Type

public

Language

🇪🇸

Spanish

(47% confidence)

Category

finance banking

(79%)

Domain Information

Within the modern generic top-level domain (.online), 'bnmaxempresas.online' is registered while skipping any subdomain. The registrable portion 'bnmaxempresas' spans 13 characters with four vowels and 9 consonants. It segments into 5 words: bn, max, emp, res, as. Expect three characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://bnmaxempresas.online/

Page Load Overview

2.11s
Total Load Time
198
HTTP Requests
5
Domains
607 KB
Total Size

Language Analysis

Primary Language

🇪🇸Spanish
Code: es
Confidence:47%
Script:Latin
Direction:ltr

Detection Details

Language Code:es
Detection Confidence:47%
Script Type:Latin
Text Length:665 chars
Detector Agreement:67%

Website Classification

Primary Category

finance banking79% confidence
Type: static
Method: ml+structural

All Detected Categories

finance banking
79%
government public service
66%
corporate business
50%
adult content
44%
documentation technical
37%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
42103.133.1.1United States
AS209242Cloudflare London, LLC
3984.32.84.32Vilnius, Vilnius, Lithuania
AS47583Hostinger International Limited
39104.17.25.14United States
AS13335
39142.250.184.234United States
AS15169GOOGLE
39142.250.201.67United States
AS15169GOOGLE
1985--

Detected Technologies1

Vue.js
30%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1CA43E890B984E02BB627412E65D6E70872FDE507FCF74898F118D0908FD7E8E293A765

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:m9r+MzknLaC8AZavHIxKlzIYbVGn0N/bVtRRGx/R:6+MzkLr8AZZxKlzIYbVtGx/R

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:58823:8QoSEMBciSI0CELoAgKZ0gA9AR6RSlEpkXYJOQhATKATVoEaN4AcirAghTEEMBnIFMsNCACSSOLBBGCE2QpWKDAEwCWcAqUB

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:81e3c1f9ffffffff
Perceptual Hash:e969363c3c696931
Difference Hash:0f4b1b93b4540a00
Wavelet Hash:0060011996fe80fc
Color Hash:#77783a

Other Hashes

Crop Resistant:0f4b1b93b4540a00,8616c934088832d5,8c26332931313133,8882829aa48502cd

Scan History

Scan history not available

Unable to load historical scan data