ScanMalware.com

Security Scan Report: evilbit.de

Submitted: Jan 20, 2026, 1:08:44 PMCompleted: Jan 20, 2026, 1:10:21 PMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 1 HTTP transaction. The main domain is evilbit.de.

Submitted URL: https://evilbit.de

AI Security Verdict

Low Risk

Confidence: 70%

2
Risk Score

Low risk site; no obvious threats but domain age unknown.

Safety Factors
No credential or payment forms present
No malicious Indicators of Compromise detected
No external domains linked
Content appears as nonsensical text, not a brand impersonation
Domain age information unavailable

Details

Page Title

evilbit.de

Scan Type

public

Language

🇺🇸

English

(50% confidence)

Category

documentation technical

(70%)

Domain Information

You're looking at domain 'evilbit.de' on the German country-code top-level domain (.de) without a subdomain. The core label 'evilbit' covers 7 characters split between three vowels and four consonants. Tokenizing the label suggests two words: evil, bit. Median word length comes out to 3.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://evilbit.de

Page Load Overview

0.62s
Total Load Time
2
HTTP Requests
1
Domains
0 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:50%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:50%
Script Type:Latin
Text Length:725 chars
Detector Agreement:100%

Website Classification

Primary Category

documentation technical70% confidence
Type: static
Method: ml+structural

All Detected Categories

documentation technical
70%
cryptocurrency blockchain
68%
technology software
62%
finance banking
36%
government public service
28%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
291.223.231.146Sweden
AS210648Verkligen Data AB
21--

Detected Technologies3

HTTP/3
40%
HSTS
40%
Caddy
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1ED018E6AAC52B89A73C4D6E36DB3D773CD174DD2650EC50F27C8103787E4954832E994

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

12:kxb0kAEdyA4CZYPJN63znF42l6Gg1mKGTuB7q3E4wb7I7LazH8oTH8jLtcd1:kWEYAVuPgFrg1mIB2E4YYY3QO

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:851:AAAAAAAIAACAAAAAgIgAAAAAEAAAEAAAAEAABAAAACAAEAgAAAAAAAAAAABAAAABQAABAAAAAAAAAAAAEAAAAAEAAAARgQAA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00ffffffffffffff
Perceptual Hash:8a0a0e0e0f0f3f7f
Difference Hash:e380000000000000
Wavelet Hash:0001ffff00000000
Color Hash:#53931f

Other Hashes

Crop Resistant:e380000000000000

Scan History

Scan history not available

Unable to load historical scan data