ScanMalware.com

Security Scan Report: evil-scarlet-wddqy6gxcz-bnnu7d5v4h.edgeone.app

Submitted: Mar 31, 2026, 3:49:24 PMCompleted: Mar 31, 2026, 3:50:44 PMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 2 countries across 4 domains to perform 8 HTTP transactions. The main domain is evil-scarlet-wddqy6gxcz-bnnu7d5v4h.edgeone.app and was registered NaN years ago.

Submitted URL: https://evil-scarlet-wddqy6gxcz-bnnu7d5v4h.edgeone.app/

The Cisco Umbrella rank of the primary domain is #455,732 of the top 1 million websites

AI Security Verdict

Moderate Risk

Confidence: 70%

5
Risk Score

The site displays a payment‑gateway title on a new subdomain with obfuscated scripts but no forms; moderate suspicion due to unknown age and low reputation.

Risk Factors
Unknown subdomain age on a free hosting platform
Low domain reputation (Cisco Umbrella rank > 400k)
Brand‑like title on an unrelated domain (potential impersonation)
Highly obfuscated JavaScript (possible attempt to hide behavior)
Safety Factors
No credential, password, or payment forms detected
No malicious Indicators of Compromise matches
No JavaScript YARA malware patterns
No network IDS alerts
Uses reputable CDN providers (cdnjs.cloudflare.com, cdn.jsdelivr.net, cdn.tailwindcss.com)
Domain age information unavailable

Details

Page Title

GlobPAY | Global Payment Gateway

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

e-commerce shopping

(63%)

Domain Information

Domain 'evil-scarlet-wddqy6gxcz-bnnu7d5v4h.edgeone.app' uses the application-focused generic top-level domain (.app) with subdomain 'evil-scarlet-wddqy6gxcz-bnnu7d5v4h'. The registrable portion 'edgeone' spans 7 characters split between 4 vowels and three consonants. It segments into 2 words: edge, one. Median word length is 3.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://evil-scarlet-wddqy6gxcz-bnnu7d5v4h.edgeone.app/

Page Load Overview

0.67s
Total Load Time
7
HTTP Requests
4
Domains
222 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:133 chars
Detector Agreement:100%

Website Classification

Primary Category

e-commerce shopping63% confidence
Type: static
Method: ml+structural+ocr_tiebreaker

All Detected Categories

e-commerce shopping
63%
finance banking
54%
gambling betting
52%
technology software
45%
cryptocurrency blockchain
43%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
4104.17.25.14United States
AS13335Cloudflare, Inc.
143.152.26.58Singapore
AS139341ACE
1151.101.65.229United States
AS13335
1172.67.68.11United States
AS13335Cloudflare, Inc.
74--

Detected Technologies2

Tailwind CSS
30%
jsDelivr
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T13223F7AA71F214B64CD794FAE75367A97825C107DE0BC444BEACC5800FC3DA5DEAB248

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:cFGoahnembtrvFz23bQrhx8qOuvGHHKktOPdbqox:2aheal23kxBGHHKkiX

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:49159:8IgogQQxAE9oMQGBMeDkE5GoSBDAwCjgfRNWCYZ6AYMPQ0+BCDAQF8AMJZAFAUQiSjAKLHCO1MAwcQIlRAAz1mpAAkRQSiIg

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:5a7e7e0000000000
Perceptual Hash:d0d0d0686d35f5d3
Difference Hash:92f0e83200000000
Wavelet Hash:ffffffff00000000
Color Hash:#3b3a78

Other Hashes

Crop Resistant:92f0e83200000000

Scan History

Scan history not available

Unable to load historical scan data