ScanMalware.com

Security Scan Report: app-xy-finance.net

Redirected to:
https://app-xy-finance.net/?nice_try_scvmbag_ivan
Site favicon
Submitted: Oct 13, 2025, 4:35:29 PMCompleted: Oct 13, 2025, 4:36:20 PMpubliccompleted
Loading additional data...

Summary

This website contacted 8 IPs in 2 countries across 3 domains to perform 33 HTTP transactions. The main domain is app-xy-finance.net and was registered NaN years ago.

Submitted URL: http://app-xy-finance.net/?nice_try_scvmbag_ivan

Effective URL: https://app-xy-finance.net/?nice_try_scvmbag_ivanRedirected

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

Site shows strong malicious indicators (new domain, circular redirect, unranked) and should be treated as a confirmed scam.

Risk Factors
Critical new domain age (<7 days)
Circular redirect loop indicating URL manipulation
Unranked domain with brand impersonation claims
Domain age information unavailable

Details

Page Title

XY Finance | Cross-Chain Swap Aggregator & Bridge Protocol

Scan Type

public

Language

🇺🇸

English

(50% confidence)

Category

cryptocurrency blockchain

(78%)

Domain Information

Within the network infrastructure generic top-level domain (.net), 'app-xy-finance.net' is registered while skipping any subdomain. Count 14 characters in 'app-xy-finance' containing 4 vowels alongside 8 consonants, along with two hyphens. Word splitting yields 3 words: app, xy, finance. Median word length comes out to three characters. 'app' most often appears in French. Secondary signals appear in Slovenian and English. Net impression: French phrase with character flair.

Screenshot

Security scan screenshot of http://app-xy-finance.net/?nice_try_scvmbag_ivan

Page Load Overview

27.81s
Total Load Time
33
HTTP Requests
3
Domains
5.4 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:50%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:50%
Script Type:Latin
Text Length:17,653 chars
Detector Agreement:100%

Website Classification

Primary Category

cryptocurrency blockchain78% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

cryptocurrency blockchain
78%
technology software
76%
documentation technical
61%
corporate
35%
cryptocurrency
22%

Detected Features

Schema.org

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
5188.114.97.3United States
AS13335CLOUDFLARENET
4216.58.206.42United States
AS15169GOOGLE
4188.114.96.3United States
AS13335CLOUDFLARENET
4142.250.186.163United States
AS15169GOOGLE
42a06:98c1:3120::3United States
AS13335CLOUDFLARENET
42a00:1450:4001:82b::2003Frankfurt am Main, Hesse, Germany
AS15169GOOGLE
42a06:98c1:3121::3United States
AS13335CLOUDFLARENET
42a00:1450:4001:828::200aFrankfurt am Main, Hesse, Germany
AS15169GOOGLE
338--

Detected Technologies1

jQuery
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T150B2E627F70123260B230199B5A75B9EE16FCD24D311193CA2BD939DB3C2D89C6BF649

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:Xs3KKl3eKBiYyS95ZGBeWp1kd3p41jR2jL4aNyqXjiRxH0T/vu8hjZC:XG1IYyw5ZHm0Zet2jEac/RxH0DlZC

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:24508:MII6QgyhaGfKUVE7DCgg8g0GTAaE4xMAQVCwB0KI0G6ATSFgBBS6CDHSAIMckrUCwCWxCkIxUyIEJYQYRlFo2AOg0wBQRGAL

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:000064765ec1c143
Perceptual Hash:e01e6f1a95e23789
Difference Hash:71b18594b4b59796
Wavelet Hash:1810777f5fc1c1c3
Color Hash:#6ce0c7

Other Hashes

Crop Resistant:cbcbc3d0cac0c8c6,71b18494b4b59796

Scan History

Scan history not available

Unable to load historical scan data