ScanMalware.com

Security Scan Report: sas.travel

Redirected to: https://www.flysas.com/de-de?utm_source=sas.travel&utm_medium=redirect

Site favicon
Submitted: Dec 7, 2025, 2:46:48 AMCompleted: Dec 7, 2025, 2:48:46 AMpubliccompleted
Loading additional data...

Summary

This website contacted 24 IPs in 2 countries across 9 domains to perform 169 HTTP transactions. The main domain is flysas.com and was registered NaN years ago.

Submitted URL: https://sas.travel/

Effective URL: https://www.flysas.com/de-de?utm_source=sas.travel&utm_medium=redirectRedirected

AI Security Verdict

Safe Website

Confidence: 93%

1
Risk Score

Legitimate SAS booking page accessed via a proper redirect.

Safety Factors
Official brand domain in final URL
Established domain age
Absence of credential or payment collection
No malicious Indicators of Compromise
Standard booking form behavior
Domain age information unavailable

Details

Page Title

SAS - Scandinavian Airlines – Buchen Sie Ihren nächsten Flug auf Flysas.com

Scan Type

public

Language

🇩🇪

German

(80% confidence)

Category

adult content

(78%)

Domain Information

You're looking at domain 'sas.travel' on the .travel top-level domain while skipping any subdomain. The second-level label 'sas' is 3 characters long containing 1 vowel alongside two consonants. Breaking it apart gives 2 words: s, as. Expect 1.5 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://sas.travel/

Page Load Overview

0.14s
Total Load Time
169
HTTP Requests
9
Domains
350 KB
Total Size

Language Analysis

Primary Language

🇩🇪German
Code: de
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:de
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:de-DE
Text Length:7,020 chars
Detector Agreement:100%

Website Classification

Primary Category

adult content78% confidence
Type: static
Method: ml+structural

All Detected Categories

adult content
78%
government public service
48%
travel tourism
45%
corporate business
33%
healthcare medical
32%

Detected Features

OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
154104.18.14.14United States
AS13335CLOUDFLARENET
7104.26.9.44United States
AS13335CLOUDFLARENET
7151.101.65.195San Francisco, California, United States
AS54113FASTLY
7104.26.4.11United States
AS13335CLOUDFLARENET
72606:4700::6812:f0eUnited States
AS13335CLOUDFLARENET
7104.26.8.44United States
AS13335CLOUDFLARENET
7104.16.79.73United States
AS13335CLOUDFLARENET
72400:52e0:1e00:2::1331:1Germany
AS60068Datacamp Limited
72606:4700:20::681a:40bUnited States
AS13335CLOUDFLARENET
7104.26.5.11United States
AS13335CLOUDFLARENET
16924--

Detected Technologies3

HTTP/3
40%
HSTS
40%
Firebase
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T10F64E9F01095553E431B99D9793A7F4D3A0EE21DEE975890AE9C83B669E3C24FC0E04B

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:vmRGGF+KenIC3+MzM5c5/8oyfocTj83r2bjP:E6Oc5/8oy8rY

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:309638:BcARiECYyDCMSpTIAMAggqwXgkvUEDCPhCDRNRRFaAAFChSJkRKoQiKIpvAYG8QSAMQIApC4oAoAJRKFtBEABLQskQGQwRRR

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0080bcbcbcbeffc1
Perceptual Hash:df5f289568818793
Difference Hash:3668607968607007
Wavelet Hash:0080bcbcbcbefec1
Color Hash:#934c1f

Other Hashes

Crop Resistant:3668607968607007,2268607869686060,c8c8c8c88cc68682

Scan History

Scan history not available

Unable to load historical scan data