ScanMalware.com

Security Scan Report: www.bundesanzeiger.de

Submitted: Dec 24, 2025, 8:42:42 AMCompleted: Dec 24, 2025, 8:44:41 AMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 18 HTTP transactions. The main domain is bundesanzeiger.de and was registered NaN years ago.

Submitted URL: https://www.bundesanzeiger.de/pub/de/start?0

The Cisco Umbrella rank of the primary domain is #520,947 of the top 1 million websites

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

Impersonates Bundesanzeiger; new low‑rank domain with hidden password and payment fields – confirmed phishing scam.

Risk Factors
Hidden password field (potential credential harvesting)
Login form collecting credentials on a newly registered domain
Payment field on a low‑reputation, newly created site
Brand impersonation of Bundesanzeiger on a domain only 49 days old
Low ranking (520,947) inconsistent with a legitimate government service
Domain age information unavailable

Details

Page Title

Startseite – Bundesanzeiger

Scan Type

public

Language

🇩🇪

German

(80% confidence)

Category

social_media

(50%)

Domain Information

You're looking at domain 'www.bundesanzeiger.de' on the German country-code top-level domain (.de), featuring subdomain 'www'. The core label 'bundesanzeiger' covers 14 characters containing six vowels alongside 8 consonants. Tokenizing the label suggests five words: bund, es, an, ze, iger. Average segment length settles at 2 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.bundesanzeiger.de/pub/de/start?0

Page Load Overview

101.69s
Total Load Time
18
HTTP Requests
1
Domains
327 KB
Total Size

Language Analysis

Primary Language

🇩🇪German
Code: de
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:de
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:de
Text Length:7,090 chars
Detector Agreement:100%

Website Classification

Primary Category

social_media50% confidence
Type: webapp
Method: structural

All Detected Categories

social_media
50%
e-commerce
40%

Detected Features

Login Form
Search
Payment

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
18128.65.211.86Frankfurt am Main, Hesse, Germany
AS34309Link11 GmbH
181--

Detected Technologies2

PasswordField
100%
HSTS
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1A1E2B73368DA581702B313D57A759F29A082D21CC84E3881DBF9C2A6A7D5DF27DCD21E

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:vbojvXYHzvR9zWGY6v1lBk9yzduKqzO7RqmegenU83jvLECd0LiPglz7:TojAHz36GY8qyoKqGR7egenUUvgi47

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:33004:JQQBYIICAk+aRJhgJApKaIBgIjAoAsEWCKgNDkhgAYASgQC8dnEgEpjgsIJrI5AGIChIQK4ATEMYANAFDQAeNAmA42YWgNAB

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0000bfffffbd4abf
Perceptual Hash:cf633022cfd19ccc
Difference Hash:cc86796961799630
Wavelet Hash:0000fffeff3c3818
Color Hash:#b079d2

Other Hashes

Crop Resistant:f2e0829aba89a8a6,cc86796961799630

Scan History

Scan history not available

Unable to load historical scan data