ScanMalware.com

Security Scan Report: u999.wcvb.com

Redirected to:
https://hearst-tv-poc.blueconic.net/blueconic/static/index.html
Site favicon
Submitted: May 11, 2026, 1:03:06 PMCompleted: May 11, 2026, 1:04:19 PMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 1 country across 2 domains to perform 4 HTTP transactions. The main domain is hearst-tv-poc.blueconic.net and was registered NaN years ago.

Submitted URL: https://u999.wcvb.com

Effective URL: https://hearst-tv-poc.blueconic.net/blueconic/static/index.htmlRedirected

The Cisco Umbrella rank of the primary domain is #214,460 of the top 1 million websites

AI Security Verdict

Moderate Risk

Confidence: 78%

4
Risk Score

The site shows a critical C2 beacon alert and heavily obfuscated JavaScript, but lacks phishing forms and has an old, reputable domain; treat as moderate‑risk malware distribution and avoid interaction.

Risk Factors
Critical network IDS alert for possible command‑and‑control activity
Highly obfuscated JavaScript with dynamic code execution
Safety Factors
Long‑standing domain (over 30 years old)
Absence of login or payment forms
No known Indicators of Compromise matched
No JavaScript malware signatures detected
Domain age information unavailable

Details

Page Title

hearst-tv-poc.blueconic.net

Scan Type

public

Language

🇺🇸

English

(41% confidence)

Category

technology software

(28%)

Domain Information

The domain name 'u999.wcvb.com' uses the commercial generic top-level domain (.com) with subdomain 'u999'. The second-level label 'wcvb' is 4 characters long split between 0 vowels and 4 consonants. Word splitting yields two words: wc, vb. Median word length comes out to two characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://u999.wcvb.com

Page Load Overview

3.47s
Total Load Time
31
HTTP Requests
3
Domains
452 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:41%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:41%
Script Type:Latin
Text Length:813 chars
Detector Agreement:67%

Website Classification

Primary Category

technology software28% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

technology software
28%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
163.224.104.85Ashburn, Virginia, United States
AS14618Amazon.com, Inc.
15108.138.7.129United States
AS16509Amazon.com, Inc.
312--

Detected Technologies4

Amazon Web Services
50%
HTTP/3
40%
HSTS
40%
Amazon CloudFront
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T18B048E77329A063985558498F05B43099F20B143F50AC9BCB9BCBAD9BFDED06107BB78

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:j/Qho9PKBb9Js3q9Jzbs6tlg1ySBKwdQ9gcoIsP+2bMy8OldT:khoC9JSqzzbs6okSjggcpsW2eAF

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:185367:GDSYQDFWU0DCikBEAGUGijDHFJwxMBxC0NOBCOABLQQhETQCg+JwMCCCwx6woUQgEyY9AQVEiDEoGIRkPKbEAASRCABKBERp

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffcfc3c7ffffffff
Perceptual Hash:b331cccccc633333
Difference Hash:00181c1c00000000
Wavelet Hash:3f1f03070f0f0f0f
Color Hash:#87c5c4

Other Hashes

Crop Resistant:00181c1c00000000

Scan History

Scan history not available

Unable to load historical scan data