ScanMalware.com

Security Scan Report: dirty-fact56958554500de.surge.sh

Redirected to: https://meinedomaingebuehr.com/

Submitted: Oct 9, 2025, 6:45:16 PMCompleted: Oct 9, 2025, 6:47:28 PMpubliccompleted
Loading additional data...

Summary

This website contacted 6 IPs in 3 countries across 3 domains to perform 7 HTTP transactions. The main domain is meinedomaingebuehr.com and was registered NaN years ago.

Submitted URL: https://dirty-fact56958554500de.surge.sh/

Effective URL: https://meinedomaingebuehr.com/Redirected

The Cisco Umbrella rank of the primary domain is #246,480 of the top 1 million websites

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

Impersonates STRATO on a newly registered, low‑rank domain – confirmed phishing scam.

Risk Factors
Brand impersonation on a brand‑new domain
Critical domain age (<7 days)
Low Cisco Umbrella ranking for a claimed major brand
Use of STRATO branding without being the official STRATO domain
Domain age information unavailable

Details

Page Title

Ihre Rechnungen – STRATO

Scan Type

public

Language

🇩🇪

German

(80% confidence)

Category

finance banking

(72%)

Domain Information

You're looking at domain 'dirty-fact56958554500de.surge.sh' on the .sh country-code top-level domain with subdomain 'dirty-fact56958554500de'. Count 5 characters in 'surge' split between two vowels and three consonants. Word splitting yields 1 word: surge. Average segment length settles at 5 characters. 'surge' most strongly signals Portuguese. You will also see it in Portuguese (Brazil) and English contexts. Taken together, it feels Portuguese with single-word simplicity.

Screenshot

Security scan screenshot of https://dirty-fact56958554500de.surge.sh/

Page Load Overview

48.61s
Total Load Time
7
HTTP Requests
3
Domains
183 KB
Total Size

Language Analysis

Primary Language

🇩🇪German
Code: de
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:de
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:de
Text Length:571 chars
Detector Agreement:100%

Website Classification

Primary Category

finance banking72% confidence
Type: static
Method: ml+structural

All Detected Categories

finance banking
72%
adult content
47%
cryptocurrency blockchain
46%
government public service
44%
e-commerce shopping
38%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1138.68.112.220Frankfurt am Main, Hesse, Germany
AS14061DIGITALOCEAN-ASN
1103.179.189.95Vietnam
AS135905VIETNAM POSTS AND TELECOMMUNICATIONS GROUP
1104.17.25.14United States
AS13335CLOUDFLARENET
12606:4700::6811:180eUnknownUnknown
1104.17.24.14UnknownUnknown
12606:4700::6811:190eUnknownUnknown
76--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T176F21A17BA102262B387F358BEEB87AE212DC207D55284FC5EBD1289C3CD17446E5DAD

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:u9++8e923wdGdurv4UfXFWYypIYOboNl6d3koXF3hjqh552yHHhYlv/hqoB3teJ:j+8e923wdGdmv4U/F/ypIYO8uyHWvtOJ

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:36177:EljdEAPQmSADEBYQoHBxoAJJQMJgBSIFAw4GFKGUBABBxgABCkYXgCBToqBWqoVRBTMB9RPAgDCwriBEIIOBBicsAEHloEoE

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:N/A
Perceptual Hash:N/A
Difference Hash:N/A
Wavelet Hash:N/A
Color Hash:N/A

Other Hashes

Crop Resistant:N/A

Scan History

Scan history not available

Unable to load historical scan data