ScanMalware.com

Security Scan Report: paquetecorreoesp.sviluppo.host

Site favicon
Submitted: Nov 3, 2025, 9:25:24 AMCompleted: Nov 3, 2025, 9:25:52 AMpubliccompleted
Loading additional data...

Summary

This website contacted 15 IPs in 3 countries across 4 domains to perform 35 HTTP transactions. The main domain is paquetecorreoesp.sviluppo.host.

Submitted URL: https://paquetecorreoesp.sviluppo.host/esp/auth/?utm_source=sniply&utm_campaign=sniply&utm_medium=sniply

AI Security Verdict

High Risk

Confidence: 85%

8
Risk Score

Phishing page impersonating Correos on an untrusted domain

Risk Factors
Brand impersonation on a suspicious domain
Unranked domain with unknown age
Urgent/threatening language to prompt user action
Possible address‑update request without a secure form
Domain age information unavailable

Details

Page Title

Localizar envíos, oficinas y códigos postales| Correos.es

Scan Type

public

Language

🇪🇸

Spanish

(51% confidence)

Category

government public service

(58%)

Domain Information

The domain name 'paquetecorreoesp.sviluppo.host' uses the .host top-level domain with subdomain 'paquetecorreoesp'. The second-level label 'sviluppo' is 8 characters long split between 3 vowels and 5 consonants. Breaking it apart gives four words: s, vil, up, po. The median word length lands at two characters. The linguistic tilt is Albanian for 's'. Usage also turns up in Czech and Slovak contexts.

Screenshot

Security scan screenshot of https://paquetecorreoesp.sviluppo.host/esp/auth/?utm_source=sniply&utm_campaign=sniply&utm_medium=sniply

Page Load Overview

4.83s
Total Load Time
35
HTTP Requests
4
Domains
429 KB
Total Size

Language Analysis

Primary Language

🇪🇸Spanish
Code: es
Confidence:51%
Script:Latin
Direction:ltr

Detection Details

Language Code:es
Detection Confidence:51%
Script Type:Latin
Text Length:792 chars
Detector Agreement:100%

Website Classification

Primary Category

government public service58% confidence
Type: static
Method: ml+structural

All Detected Categories

government public service
58%
corporate business
47%
e-commerce shopping
44%
technology software
40%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
7151.101.129.229San Francisco, California, United States
AS54113FASTLY
2104.18.10.207United States
AS13335CLOUDFLARENET
2151.101.193.229San Francisco, California, United States
AS54113FASTLY
2185.201.65.187Italy
AS47242Host SpA
2142.250.186.106United States
AS15169GOOGLE
22a04:4e42:200::485United States
AS54113FASTLY
22a04:4e42::485United States
AS54113FASTLY
22a04:4e42:600::485United States
AS54113FASTLY
22606:4700::6812:bcfUnited States
AS13335CLOUDFLARENET
2151.101.65.229San Francisco, California, United States
AS54113FASTLY
3515--

Detected Technologies2

JQueryv3.5.1
100%
HTTP/3
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1D4126F214CF9156F1182908ABE39AA2A7EC6800BC36B670531FD165E6F86D47CD73F6C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

96:sGpEztfIm74lU7eVdKvOejl7KvdLJzP5TllQO7:sAEzJg6OejlMlt

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:9770:TKwxIYy9AAICmIgMBhJggGQgAaoADCqkdCgoHRhQCAPSsmkQEP8BxAFwIghEUgpYA6alJCSWABhYAwARu4BUACFzGYgiwMhI

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:08e7e7efe7e7e7e7
Perceptual Hash:f35f0e338c0c9927
Difference Hash:490c0c0c0c0c0c0c
Wavelet Hash:00e6e6e6c2c2c3e7
Color Hash:#40bfae

Other Hashes

Crop Resistant:490c0c0c0c0c0c0c

Scan History

Scan history not available

Unable to load historical scan data