ScanMalware.com

Security Scan Report: ndk2-susters.top

Submitted: Dec 11, 2025, 3:45:28 AMCompleted: Dec 11, 2025, 3:45:58 AMpubliccompleted
Loading additional data...

Summary

This website contacted 41 IPs in 2 countries across 10 domains to perform 655 HTTP transactions. The main domain is ndk2-susters.top and was registered NaN years ago.

Submitted URL: https://ndk2-susters.top/desktop/game/slot/playtech

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

Confirmed phishing site harvesting credentials; avoid and report immediately.

Risk Factors
New domain (<7 days) collecting credentials
Disguised password fields (type='text' with password placeholder)
Hidden password fields
Brand impersonation/typosquatting (Telegram) on unranked domain
Unicode evasion in form fields
Domain age information unavailable

Details

Page Title

SUSTER123 # Zona Bermain Game Online Daring Gacor Terbaru & Terbaik

Scan Type

public

Language

🇮🇩

ID

(80% confidence)

Category

gambling betting

(93%)

Domain Information

Domain 'ndk2-susters.top' uses the .top top-level domain without a subdomain. The registrable portion 'ndk2-susters' spans 12 characters split between two vowels and 8 consonants, plus 1 digit and 1 hyphen. Tokenizing the label suggests 6 words: nd, k, 2, s, uster, s. Median word length is one character. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://ndk2-susters.top/desktop/game/slot/playtech

Page Load Overview

9.39s
Total Load Time
655
HTTP Requests
10
Domains
8.6 MB
Total Size

Language Analysis

Primary Language

🇮🇩Indonesian
Code: id
Confidence:80%
Script:Unknown
Direction:ltr

Detection Details

Language Code:id
Detection Confidence:80%
Script Type:Unknown
HTML Lang Attribute:id
Text Length:14,353 chars
Detector Agreement:40%

Website Classification

Primary Category

gambling betting93% confidence
Type: webapp
Method: ml+structural

All Detected Categories

gambling betting
93%
entertainment media
81%
documentation technical
75%
technology software
59%
adult content
42%

Detected Features

Login Form
OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
5523.36.162.25Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
15172.67.217.79United States
AS13335CLOUDFLARENET
1513.226.247.213United States
AS16509AMAZON-02
152.17.100.249Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
152.17.100.179Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
152.21.239.206Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
1513.226.247.189United States
AS16509AMAZON-02
1513.226.247.206United States
AS16509AMAZON-02
1523.50.131.150Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
1565.8.102.99United States
AS16509AMAZON-02
65541--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1E394B73354561A373A3320E87A707F9A5990D75BE6634B81B3FCABB713E1CE4A813151

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

6144:8JDP5ZIANNfpdEE5qcMCHdWdeXgqeXgsLFrwc:8jdEEscPWIGN

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:446917:SEm/MT3Eg3BJAIoIoSmAREKRhKhRFnRBgMACCBxxgJBLBcp3OJBWkFEMwAgLIAuFIGsECcJcCICwd2MyQAV5MgCQEQJCAomA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0c007d3d013d3d3d
Perceptual Hash:8a55532b559b93a9
Difference Hash:49b5f17173696971
Wavelet Hash:2c003d3d393d3d3d
Color Hash:#9d53ac

Other Hashes

Crop Resistant:ad018de5f11e23bd,d4d2f2b2f1f5d9d9,49b4f17173696971

Scan History

Scan history not available

Unable to load historical scan data