ScanMalware.com

Security Scan Report: forms.olorin.be

Submitted: May 15, 2026, 10:46:06 PMCompleted: May 15, 2026, 10:47:32 PMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 2 countries across 5 domains to perform 31 HTTP transactions. The main domain is forms.olorin.be and was registered NaN years ago.

Submitted URL: https://forms.olorin.be/steun-ons

AI Security Verdict

High Risk

Confidence: 80%

7
Risk Score

Critical IDS alerts suggest malware activity despite an old, otherwise benign domain; avoid interaction and report.

Risk Factors
Critical IDS alert indicating possible command‑and‑control activity
High IDS alerts for suspicious POST traffic
Unranked domain (low reputation) despite long age
Domain age information unavailable

Details

Page Title

Steun ons! | www.olorin.be

Scan Type

public

Language

🇳🇱

Dutch

(39% confidence)

Category

finance banking

(75%)

Domain Information

Domain 'forms.olorin.be' uses the Belgian country-code top-level domain (.be) with subdomain 'forms'. The core label 'olorin' covers 6 characters holding 3 vowels versus 3 consonants. Tokenizing the label suggests 3 words: ol, or, in. Median word length is 2 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://forms.olorin.be/steun-ons

Page Load Overview

1.04s
Total Load Time
33
HTTP Requests
7
Domains
1.1 MB
Total Size

Language Analysis

Primary Language

🇳🇱Dutch
Code: nl
Confidence:39%
Script:Latin
Direction:ltr

Detection Details

Language Code:nl
Detection Confidence:39%
Script Type:Latin
HTML Lang Attribute:en
Text Length:892 chars
Detector Agreement:67%
Language mismatch: Declared as en but detected as nl

Website Classification

Primary Category

finance banking75% confidence
Type: spa
Method: ml+structural

All Detected Categories

finance banking
75%
government public service
68%
corporate business
59%
entertainment media
58%
news media journalism
57%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
9142.251.20.95United States
AS15169Google LLC
652.18.202.119Dublin, Leinster, Ireland
AS16509Amazon.com, Inc.
6151.101.2.137United States
AS54113Fastly, Inc.
6104.18.11.207United States
AS13335Cloudflare, Inc.
6142.251.20.113United States
AS15169Google LLC
335--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1D762C5369D06D82742A756E9FA71A72FA173C308D3038D5166F846AE3BC1E8DDC5839C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:K6oC5kigAADxNX+N373fqSqXRS8OvdPjDO4o:K6oCOA0xNXi373fqSqXRSRjDO4o

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:15371:gIRQUAAwMKSiGLIZANIBMgAAgwIZBBZkQ9gcAeLMICGokFiJEHUAAQkBOmQB3GFAQso1a3wFNQMJIaIAZngRRRV2IQCkQWQC

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:cb87033f3bbb9fbf
Perceptual Hash:bf31f0c8819e6d07
Difference Hash:9b1b6f6f7372686a
Wavelet Hash:c383030b0b8b9fbf
Color Hash:#406cbf

Other Hashes

Crop Resistant:9b1b6f6f7372686a,0181c3c2c5c70f9b,064f33556303493c,4a4a4accb2d24a4a,8ce6a692b991898d

Scan History

Scan history not available

Unable to load historical scan data