ScanMalware.com

Security Scan Report: developmentcrimson.shop

Submitted: Mar 18, 2026, 12:28:19 PMCompleted: Mar 18, 2026, 12:29:47 PMpubliccompleted
Loading additional data...

Summary

This website contacted 6 IPs in 1 country across 6 domains to perform 53 HTTP transactions. The main domain is developmentcrimson.shop and was registered NaN years ago.

Submitted URL: https://developmentcrimson.shop/

AI Security Verdict

Confirmed Scam

Confidence: 82%

9
Risk Score

Site impersonates the Poppy Playtime brand on a brand‑new unranked domain; treat as high‑risk and do not download.

Risk Factors
Brand impersonation of a known game on an unrelated, unranked domain
Domain is brand‑new (<7 days) and unranked
Domain does not belong to the official Poppy Playtime publisher
Domain age information unavailable

Details

Page Title

Poppy Playtime Chapter 2

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

entertainment media

(63%)

Domain Information

The domain 'developmentcrimson.shop' uses the commerce-oriented generic top-level domain (.shop) while skipping any subdomain. The second-level label 'developmentcrimson' is 18 characters long split between six vowels and 12 consonants. It segments into 2 words: development, crimson. Average segment length settles at 9 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://developmentcrimson.shop/

Page Load Overview

8.06s
Total Load Time
56
HTTP Requests
6
Domains
8.5 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:3,932 chars
Detector Agreement:100%

Website Classification

Primary Category

entertainment media63% confidence
Type: static
Method: ml+structural

All Detected Categories

entertainment media
63%
technology software
58%
documentation technical
49%
government public service
44%
education learning
38%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
11142.251.140.182United States
AS15169
9142.250.186.67United States
AS54113
9142.251.140.170United States
AS13335
9188.114.97.3United States
AS13335Cloudflare, Inc.
9185.199.108.153United StatesUnknown
9104.17.24.14United States
AS13335Cloudflare, Inc.
566--

Detected Technologies4

HTTP/3
40%
Cloudflare Bot Management
40%
Cloudflare
40%
cdnjs
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T17244123B2255D937252B7294FE76ABA929D1030BC913D8A7BCFD51AD87CFE51003B250

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

6144:W13OcFqzpsNZBBjEGQZNL/QeUEymsoGa/bU1QmJG:plITBjEhL//Upa/UG

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:272655:GCgDBwDBEJKgAgGWUAfCYAhTGICJSBHArhwJScHhuhkokkhagxqLEDABgRMwq5gAwwCAABUAH7A0RowkjogkQU0CKAjORMBC

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:c3fff3f3ff818199
Perceptual Hash:ecc43b39936c6e30
Difference Hash:2b1616071823336b
Wavelet Hash:81d3c3e3ff8181a5
Color Hash:#bfb040

Other Hashes

Crop Resistant:2b1616071823336b,a280a2a2a2a2a2a2,8e888c8c8c8c8c8c,0028166969690620,90563c54d479346c,100c32b22dd494d4

Scan History

Scan history not available

Unable to load historical scan data