ScanMalware.com

Security Scan Report: www.agenziaentrate.gov.it

Redirected to:
https://www.agenziaentrate.gov.it/portale/
Site favicon
Submitted: May 13, 2026, 8:22:28 PMCompleted: May 13, 2026, 8:24:03 PMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 1 country across 2 domains to perform 82 HTTP transactions. The main domain is agenziaentrate.gov.it and was registered NaN years ago.

Submitted URL: https://www.agenziaentrate.gov.it

Effective URL: https://www.agenziaentrate.gov.it/portale/Redirected

The Cisco Umbrella rank of the primary domain is #193,212 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 78%

7
Risk Score

The site shows strong signs of malware activity (C2 beacon) despite being an old government domain, warranting a high‑risk classification.

Risk Factors
Critical network IDS alert indicating possible command‑and‑control traffic
Obfuscated JavaScript with charcode manipulation and unescape usage
Low reputation ranking for a government domain
Domain age information unavailable

Details

Page Title

Due Agenzie al servizio del Paese - Portale Agenzia Entrate

Scan Type

public

Language

🇮🇹

Italian

(80% confidence)

Category

government public service

(97%)

Domain Information

Domain 'www.agenziaentrate.gov.it' uses the Italian country-code top-level domain (.gov.it) and includes subdomain 'www'. Count 14 characters in 'agenziaentrate' split between seven vowels and seven consonants. Splitting it apart reveals 4 words: agen, zia, ent, rate. Average segment length settles at 3.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.agenziaentrate.gov.it

Page Load Overview

6.08s
Total Load Time
85
HTTP Requests
2
Domains
9.2 MB
Total Size

Language Analysis

Primary Language

🇮🇹Italian
Code: it
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:it
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:it-IT
Text Length:3,645 chars
Detector Agreement:100%

Website Classification

Primary Category

government public service97% confidence
Type: spa
Method: ml+structural

All Detected Categories

government public service
97%
finance banking
91%
adult content
53%
technology software
50%
blog personal website
49%

Detected Features

OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
4323.36.163.238Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
4223.36.163.225Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
852--

Detected Technologies1

Open-Graph-Protocolvwebsite
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T10E83B5A6D6EC0A3782A39069F9393C4DA7AED593D4470441FAAD07D5DFC7ED2882B01C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:uGh1wE69/kj/9sSTioKOClip6i661jKnD60ATinSCIavkd1debKMvsSRnuFJ:j69/kj/9sSTioKOCMpj6sdoBsJ

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:87327:YmA1gRxQYUHcESSQwgEQOCwYAiAguAZSEwgAMcBpoDFJKqwEwBTamACAHESCAAsDEAEWsqsIJsQAahAZgEKimCJAIEACInhQ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ff07010000ffffdb
Perceptual Hash:ac02ead754e9c53c
Difference Hash:39fbfff6fcdc0f33
Wavelet Hash:ff01000000fffff7
Color Hash:#862d83

Other Hashes

Crop Resistant:39fbfff6fcdc0f33,dddada1b755e98da,fff9fef7c6fcfcfe,ffff7fe7e77fffff,ffff7f39697fffff

Scan History

Scan history not available

Unable to load historical scan data