ScanMalware.com

Security Scan Report: www.comune.casoratesempione.va.it

Site favicon
Submitted: May 29, 2026, 7:54:17 AMCompleted: May 29, 2026, 7:55:46 AMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 4 HTTP transactions. The main domain is comune.casoratesempione.va.it.

Submitted URL: https://www.comune.casoratesempione.va.it

AI Security Verdict

Confirmed Scam

Confidence: 95%

9
Risk Score

The site hosts malicious JavaScript (exploit kit and keylogger) despite appearing as a government page; treat as confirmed malware distribution and avoid interaction.

Risk Factors
Critical and high severity YARA malware matches
Extreme JavaScript obfuscation with base64 and unescape usage
Unranked domain with unknown registration age
Presence of exploit‑kit primitives in client‑side code
Keylogger functionality detected in JavaScript
Domain age information unavailable

Details

Page Title

Comune di Casorate Sempione - Casorate Sempione

Scan Type

public

Language

🇮🇹

Italian

(80% confidence)

Category

government public service

(74%)

Domain Information

The domain name 'www.comune.casoratesempione.va.it' uses the Italian country-code top-level domain (.va.it) with subdomain 'www.comune'. Its registrable label 'casoratesempione' stretches across 16 characters containing eight vowels alongside eight consonants. Tokenizing the label suggests five words: caso, rates, emp, i, one. Average segment length settles at 3 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.comune.casoratesempione.va.it

Page Load Overview

1.33s
Total Load Time
27
HTTP Requests
2
Domains
1.3 MB
Total Size

Language Analysis

Primary Language

🇮🇹Italian
Code: it
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:it
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:it
Text Length:8,756 chars
Detector Agreement:100%

Website Classification

Primary Category

government public service74% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

government public service
74%
documentation technical
60%
blog personal website
40%
adult content
32%
news/blog
20%

Detected Features

Search
OG: article

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
27217.64.201.219Frosinone, Lazio, Italy
AS12637SEEWEB s.r.l.
271--

Detected Technologies2

X-UA-Compatible
100%
Open-Graph-Protocolvarticle
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1E4D39331D1F1147B41A392F66AF56B5ABFA2C50BE4AA0045B2FD0B845FF7ED18A0391C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:pLOxV7qUDb97qUDbKApBu2c+PDYgr3eYXvh3eYXv++PDYg86zXsEDlsa5xkevj45:B

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:133183:oITQAjIByJEUeCaBnI1AtHCrJ2zwFITkBERQiIuBOQ7BYEEQWgCTxgFaowFKgIDFAFlVgOoaAUEJkBwhAlIqKXBMAAge0VHh

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffc7c7c3d3ffffff
Perceptual Hash:b1339accccb33364
Difference Hash:00181c1616000000
Wavelet Hash:3f1f0707003c0c0c
Color Hash:#ac53ab

Other Hashes

Crop Resistant:00181c1616000000

Scan History

Scan history not available

Unable to load historical scan data