ScanMalware.com

Security Scan Report: raw.githubusercontent.com

Submitted: Nov 23, 2025, 4:51:38 PMCompleted: Nov 23, 2025, 4:53:16 PMpubliccompleted
Loading additional data...

Summary

This website contacted 8 IPs in 1 country across 1 domain to perform 1 HTTP transaction. The main domain is raw.githubusercontent.com and was registered NaN years ago.

Submitted URL: https://raw.githubusercontent.com/Neo23x0/signature-base/master/yara/gen_mal_3cx_compromise_mar23.yar

The Cisco Umbrella rank of the primary domain is #585,464 of the top 1 million websites

AI Security Verdict

Safe Website

Confidence: 95%

0
Risk Score

Legitimate file with no security concerns

Safety Factors
Well-established domain age
No forms collecting sensitive data
No malicious Indicators of Compromise matches
Content is a YARA rule file, not executable code
Domain age information unavailable

Details

Page Title

N/A

Scan Type

public

Language

🇺🇸

English

(50% confidence)

Category

cryptocurrency blockchain

(54%)

Domain Information

Domain 'raw.githubusercontent.com' uses the commercial generic top-level domain (.com), featuring subdomain 'raw'. The second-level label 'githubusercontent' is 17 characters long containing six vowels alongside eleven consonants. Segmentation suggests 5 words: g, it, hub, user, content. Median word length comes out to three characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://raw.githubusercontent.com/Neo23x0/signature-base/master/yara/gen_mal_3cx_compromise_mar23.yar

Page Load Overview

0.13s
Total Load Time
1
HTTP Requests
1
Domains
6 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:50%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:50%
Script Type:Latin
Text Length:21,533 chars
Detector Agreement:100%

Website Classification

Primary Category

cryptocurrency blockchain54% confidence
Type: static
Method: ml+structural

All Detected Categories

cryptocurrency blockchain
54%
technology software
32%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1185.199.109.133United States
AS54113FASTLY
0185.199.108.133United States
AS54113FASTLY
02606:50c0:8000::154United States
AS54113FASTLY
02606:50c0:8003::154United States
AS54113FASTLY
0185.199.110.133United States
AS54113FASTLY
02606:50c0:8001::154United States
AS54113FASTLY
0185.199.111.133United States
AS54113FASTLY
02606:50c0:8002::154United States
AS54113FASTLY
18--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T147A2A4429C5224CE890E6F99AFB38096B121151B66D24C87F68D72F41F4FCB6E3F3256

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:dvtAqDIr9W6NoRxIKDPRUja81+WNjC7T/x5NIBL0NrFrI9tEEjE:BtAr09CKg17+P+Zq4eYE

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:21716:QAC8IEQRClAgUSCX1SoGDl2ETka6RcIK6xyQ47mJScKgERLgSR0xRjAB5SgEFK4QGoJCERJFKYDCUEHBIhyAQqoAJINFTHKa

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:3f1f033f1f0f3f1f
Perceptual Hash:8f2dd5d2c4e0336c
Difference Hash:f07a7ffc607cd870
Wavelet Hash:0e13033f1f073f0f
Color Hash:#78753a

Other Hashes

Crop Resistant:f07a7ffc607cd870

Scan History

Scan history not available

Unable to load historical scan data