staemconmumity.click

https://staemconmumity.click/id=489501036

62.60.226.105 · Femo IT Solutions Limited

Location

Frankfurt am Main, Germany

Domain Age

7 days ⚠

HTTP

200 · 39.7s

SSL

Valid· R12, Let's Encrypt, US

Status

COMPLETED

Visual Evidence

Zoom

Title: "Steam Gift Activation"

Save

Domain Intelligence: staemconmumity.click

Scanned 5 times since Feb 22, 2026, 09:06 AM UTC

✗ Critical (100)

Take this site down

Report to 50+ vendors instantly

KB/IOK Matches (0)—

No KB/IOK detections were recorded for this scan.

Steam

Credential Phishing

technology | ecommerce · 4/5/2026

Summary

This site at staemconmumity.click is a Steam impersonation. The page title Steam Gift Activation and the embedded assets mimic Steam branding, while the domain is a newly registered .click domain not affiliated with Valve/Steam. The SPA-like page loads Steam assets and a credential-collection flow via hidden forms in JavaScript, indicating an attempt to harvest credentials under the guise of Steam gift activation.

Attack Techniques (5)

Typosquatting domain with branding in page title (staemconmumity.click vs Steam) and SPA renderingCloned Steam UI and assets loaded from Steam-like paths (steamstatic CDN resources) to imitate legitimate brandingSingle-Page Application behavior with dynamic credential capture (no static login form in HTML, but JavaScript bundles likely render the form and post data)Brand logo and UI elements loaded from Steam assets (store.fastly.steamstatic.com, steamstatic.com domains) to appear legitimateSuspicious new domain age and .click TLD combined with a valid TLS certificate

Indicators of Compromise (6)

▸DOMAIN: staemconmumity.click (very new domain, 7 days old)

▸PAGE TITLE: Steam Gift Activation (impersonation of Steam)

▸Network requests loading Steam assets from steamstatic CDN and related scripts

▸POST request to staemconmumity.click/7d4f28037405065801175170050a08500054025157

▸SSL certificate issued recently (Let's Encrypt) for staemconmumity.click

▸No static login form in HTML; SPA likely renders credential collection via JavaScript

Risk AssessmentUsed in abuse reports

The page demonstrates high-risk credential-phishing activity. The domain staemconmumity.click is a new, suspicious domain that impersonates Steam, as evidenced by the page title and visual branding visible in the screenshot. It loads legitimate Steam assets to cloak its malicious intent and executes POST requests to collect data, consistent with credential harvesting via a branded spoof. The WAF/scanner blocks are not indicated, but the combination of brand impersonation, new domain, and SPA-based credential capture constitutes an urgent abuse vector requiring domain suspension and reporting to the registrar and hosting provider. Evidence includes: impersonated Steam branding in page title, non-official domain name, new domain age (7 days), TLS certificate from Let's Encrypt, and credential-relevant POST/JS activity linked to the impersonation page.

Recommended Action

Suspend Domain

Cross-Reference8

URL Intelligence