ScanMalware.com

Security Scan Report: sani2.com

Submitted: Nov 25, 2025, 5:56:38 AMCompleted: Nov 25, 2025, 5:59:26 AMpubliccompleted
Loading additional data...

Summary

This website contacted 18 IPs in 2 countries across 8 domains to perform 128 HTTP transactions. The main domain is sani2.com and was registered NaN years ago.

Submitted URL: https://sani2.com/document/78458

AI Security Verdict

High Risk

Confidence: 85%

7
Risk Score

Site mimics BT brand on an unrelated domain, high‑risk phishing.

Risk Factors
Brand impersonation on a non‑official domain
Unranked domain presenting a major brand
Domain age information unavailable

Details

Page Title

SANI2 » Home

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

government public service

(60%)

Domain Information

Domain 'sani2.com' uses the commercial generic top-level domain (.com) without a subdomain. Its registrable label 'sani2' stretches across 5 characters containing two vowels alongside 2 consonants; bonus characters include 1 digit. Splitting it apart reveals 2 words: sani, 2. Median word length comes out to 2.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://sani2.com/document/78458

Page Load Overview

3.13s
Total Load Time
128
HTTP Requests
8
Domains
462 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:2,321 chars
Detector Agreement:100%

Website Classification

Primary Category

government public service60% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

government public service
60%
healthcare medical
47%
adult content
33%
cryptocurrency blockchain
32%
social media network
31%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
11852.71.106.208Ashburn, Virginia, United States
AS14618AMAZON-AES
7104.16.234.42United States
AS13335CLOUDFLARENET
72a00:1450:4001:80b::2008Frankfurt am Main, Hesse, Germany
AS15169GOOGLE
72001:4860:4802:32::36United States
AS15169GOOGLE
72001:4860:4802:34::36United States
AS15169GOOGLE
7104.16.175.226United States
AS13335CLOUDFLARENET
72606:4700::6810:afe2United States
AS13335CLOUDFLARENET
72606:4700::6810:aee2United States
AS13335CLOUDFLARENET
72a00:1450:4001:80b::200eFrankfurt am Main, Hesse, Germany
AS15169GOOGLE
72a00:1450:4001:80f::200aFrankfurt am Main, Hesse, Germany
AS15169GOOGLE
12818--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T128E285E4D297671FA01640A1E5109EA499D6B20BF31B4C04D3B9693BEF98D94EE733CC

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:749oFCydPDEyddq8Cm0ifsumzm4mplDh/N:7EoFLd7Eyddq830ifHU5wplN

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:32105:1NRuogqQIADmtAARJAF0IJZIoJIYYBSKkRNCYEAMYoKEgiuE0aRMVKUA76EhDTQAbvESIAAWEESkxUYViEUQzGlRImqC6EEr

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00003c3c3c3c3c3c
Perceptual Hash:827934393c9b96cb
Difference Hash:4dc9496969696965
Wavelet Hash:04247c7c7c7c7c3c
Color Hash:#962dd2

Other Hashes

Crop Resistant:cbcbcbcbe0c1c8c6,30969cacd4d4d483,4dc9496969696965,210e717179601c21

Scan History

Scan history not available

Unable to load historical scan data