ScanMalware.com

Security Scan Report: telegram.hr

Redirected to: https://www.telegram.hr/

Site favicon
Submitted: Jan 18, 2026, 7:03:27 AMCompleted: Jan 18, 2026, 7:05:29 AMpubliccompleted
Loading additional data...

Summary

This website contacted 15 IPs in 6 countries across 20 domains to perform 1 HTTP transaction. The main domain is telegram.hr and was registered NaN years ago.

Submitted URL: https://telegram.hr

Effective URL: https://www.telegram.hr/Redirected

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

High‑risk phishing site impersonating Telegram with a credential‑harvesting login form.

Risk Factors
Credential harvesting login form on a domain that does not belong to the Telegram brand
Brand impersonation of Telegram on an unrelated domain
Unranked domain for a well‑known brand increases suspicion
Domain age information unavailable

Details

Page Title

Telegram - najnovije vijesti, komentari, eseji i analize

Scan Type

public

Language

🇭🇷

HR

(80% confidence)

Category

news media journalism

(64%)

Domain Information

The domain name 'telegram.hr' uses the Croatian country-code top-level domain (.hr) and has no subdomain. The core label 'telegram' covers 8 characters with 3 vowels and 5 consonants. It segments into one word: telegram. Median word length is 8 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://telegram.hr

Page Load Overview

8.31s
Total Load Time
291
HTTP Requests
38
Domains
6.8 MB
Total Size

Language Analysis

Primary Language

🇭🇷HR
Code: hr
Confidence:80%
Script:Unknown
Direction:ltr

Detection Details

Language Code:hr
Detection Confidence:80%
Script Type:Unknown
HTML Lang Attribute:hr
Text Length:23,905 chars
Detector Agreement:100%

Website Classification

Primary Category

news media journalism64% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

news media journalism
64%
government public service
60%
adult content
52%
social media network
49%
corporate business
48%

Detected Features

OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
25142.251.141.74Germany
AS15169
19172.217.20.131Finland
AS54113
1913.33.52.91United States
AS32934
19172.217.20.130Switzerland
AS8075
1920.105.232.37Amsterdam, North Holland, Netherlands
AS8075MICROSOFT-CORP-MSN-AS-BLOCK
1966.102.1.84Sweden
AS16625
19172.66.167.207United States
AS13335CLOUDFLARENET
19104.20.25.121United States
AS13335CLOUDFLARENET
19104.16.160.145United States
AS13335CLOUDFLARENET
19172.66.168.63Unknown
AS200478
29115--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T17F26D611A3A1F715692311A0EC76FF8EA129B946E9ACC1337D7F8C7AC3828551DB970C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

49152:KH6yq9hPAVfEscuf1sE6JrPtoHOi04074D0CQyPoC3/calpnC8TJiVbdYF55aMY1:YZm

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:4819485:QozggBiQKGrUA21ScWgICQhFjCqRupYCGCPgBMjaAAAUlyFEHHTCsUMJzOQAolBsxZBiiAzJkqCYxAExoEHcKCvarujAEAMQ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00ffffefc7e3e7db
Perceptual Hash:b7584c7719436c17
Difference Hash:dd0db04b0f4f4e33
Wavelet Hash:00ffffe38381c381
Color Hash:#8790c5

Other Hashes

Crop Resistant:dd0db04b0f4f4e33,03ecec1323d4d4d1,1edeae6c76305253

Scan History

Scan history not available

Unable to load historical scan data