ScanMalware.com

Security Scan Report: snip.ly

Redirected to:
https://sinopeeditions.com/jhd/auth/?utm_source=sniply&utm_campaign=sn...
Site favicon
Submitted: Oct 31, 2025, 1:15:59 AMCompleted: Oct 31, 2025, 1:17:59 AMpubliccompleted
Loading additional data...

Summary

This website contacted 19 IPs in 3 countries across 5 domains to perform 37 HTTP transactions. The main domain is sinopeeditions.com.

Submitted URL: https://snip.ly/CORREOS-POST/

Effective URL: https://sinopeeditions.com/jhd/auth/?utm_source=sniply&utm_campaign=sniply&utm_medium=sniplyRedirected

AI Security Verdict

High Risk

Confidence: 88%

8
Risk Score

High‑risk phishing page impersonating Correos; do not trust.

Risk Factors
Brand impersonation/typosquatting on an unranked domain
Redirect to unrelated domain (snip.ly → sinopeeditions.com)
Likely newly registered domain used for tracking‑number scam
Absence of legitimate Correos.es URLs or SSL certificates matching brand
Domain age information unavailable

Details

Page Title

Localizar envíos, oficinas y códigos postales| Correos.es

Scan Type

public

Language

🇪🇸

Spanish

(51% confidence)

Category

government public service

(59%)

Domain Information

The domain 'snip.ly' uses the Libyan country-code top-level domain (.ly). Count 4 characters in 'snip' with 1 vowel and 3 consonants. Tokenizing the label suggests 1 word: snip. 'snip' most often appears in Afrikaans. It also appears in Sinhala and English contexts. Overall, 'snip.ly' reads as Afrikaans with single-word simplicity.

Screenshot

Security scan screenshot of https://snip.ly/CORREOS-POST/

Page Load Overview

77.38s
Total Load Time
37
HTTP Requests
5
Domains
511 KB
Total Size

Language Analysis

Primary Language

🇪🇸Spanish
Code: es
Confidence:51%
Script:Latin
Direction:ltr

Detection Details

Language Code:es
Detection Confidence:51%
Script Type:Latin
Text Length:792 chars
Detector Agreement:100%

Website Classification

Primary Category

government public service59% confidence
Type: static
Method: ml+structural

All Detected Categories

government public service
59%
corporate business
47%
e-commerce shopping
44%
technology software
40%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
19151.101.193.229San Francisco, California, United States
AS54113FASTLY
1216.58.206.42United States
AS15169GOOGLE
1104.18.10.207United States
AS13335CLOUDFLARENET
1151.101.1.229San Francisco, California, United States
AS54113FASTLY
1146.59.209.152France
AS16276OVH SAS
1172.66.148.43United States
AS13335CLOUDFLARENET
12606:4700::6810:afe2United States
AS13335CLOUDFLARENET
12a00:1450:4001:801::200aFrankfurt am Main, Hesse, Germany
AS15169GOOGLE
12606:4700::6810:aee2United States
AS13335CLOUDFLARENET
12606:4700::6812:bcfUnited States
AS13335CLOUDFLARENET
3719--

Detected Technologies3

JQueryv3.5.1
100%
Cloudflare Bot Management
40%
Cloudflare
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T16C126F214CF9156F1182908ABE39AA2A7EC6800BC36B670531FD165E6F86D47CD73F6C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

96:sGpEztfIm74lU7eVdKvOejl7KvdLIzP5TllQO7:sAEzJg6OejlPlt

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:9770:TKwxIYy9AAICmIgMBhJggGQgAaoADCqkdCgoHRhQCAPSsmkQEP8hxAFwIghEUgpYA6alJCSWABhYAwARu4BUACFzGYgiwMhI

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:08e7e7efe7e7e7e7
Perceptual Hash:f35f0e338c0c9927
Difference Hash:490c0c0c0c0c0c0c
Wavelet Hash:00e6e6e6c2c2c3e7
Color Hash:#4084bf

Other Hashes

Crop Resistant:490c0c0c0c0c0c0c

Scan History

Scan history not available

Unable to load historical scan data