ScanMalware.com

Security Scan Report: sp225074.sitebeat.crazydomains.com

Submitted: Nov 20, 2025, 3:22:41 AMCompleted: Nov 20, 2025, 3:25:00 AMpubliccompleted
Loading additional data...

Summary

This website contacted 12 IPs in 2 countries across 5 domains to perform 30 HTTP transactions. The main domain is sp225074.sitebeat.crazydomains.com and was registered NaN years ago.

Submitted URL: https://sp225074.sitebeat.crazydomains.com/

The Cisco Umbrella rank of the primary domain is #481,468 of the top 1 million websites

AI Security Verdict

Moderate Risk

Confidence: 70%

4
Risk Score

Potential phishing login page on a hosting subdomain; moderate risk.

Risk Factors
Disguised password field can capture credentials without user awareness
Unicode evasion technique may hide malicious intent
Credential harvesting pattern (password-only form)
Safety Factors
Domain is over 24 years old (well‑established)
Hosted on a reputable provider (crazydomains.com) and uses cPanel branding
No malicious Indicators of Compromise matches found
Domain age information unavailable

Details

Page Title

Webmail Service

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

corporate

(50%)

Domain Information

Domain 'sp225074.sitebeat.crazydomains.com' uses the commercial generic top-level domain (.com); it also runs on subdomain 'sp225074.sitebeat'. The core label 'crazydomains' covers 12 characters holding four vowels versus 8 consonants. Breaking it apart gives two words: crazy, domains. Median word length comes out to 6 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://sp225074.sitebeat.crazydomains.com/

Page Load Overview

4.72s
Total Load Time
30
HTTP Requests
5
Domains
1.1 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:999 chars
Detector Agreement:100%

Website Classification

Primary Category

corporate50% confidence
Type: static
Method: structural

All Detected Categories

corporate
50%

Detected Features

OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
24103.67.235.120Perth, Western Australia, Australia
AS38719Dreamscape Networks Limited
3104.26.6.16United States
AS13335CLOUDFLARENET
2104.26.7.16United States
AS13335CLOUDFLARENET
234.117.140.48Kansas City, Missouri, United States
AS396982GOOGLE-CLOUD-PLATFORM
2172.67.70.60United States
AS13335CLOUDFLARENET
22606:4700:20::681a:610United States
AS13335CLOUDFLARENET
2172.66.160.115United States
AS13335CLOUDFLARENET
22606:4700:10::6814:255bUnited States
AS13335CLOUDFLARENET
22606:4700:20::ac43:463cUnited States
AS13335CLOUDFLARENET
22606:4700:20::681a:710United States
AS13335CLOUDFLARENET
3012--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1437364A184570012B28B1CDA37CFB719B51E634B9845DA25BBFC278C1FDEE7A12A130D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:1jzHH8d47R7F7Z7r7S7r7KRFZrSrGlZdv2PaNxVnO3mxl5LyLeVpt/GfQSP7g7K7:bBThjQ4qa+pNsNhRqEg

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:80003:D0ewDiIASIYRCIhKuQCQlNCBlIlsaShYCZWSogJOQwWAgUIIcAECURSYEAodCCQrdGxGCFoT4hWSUAlAAJgeIBCAlTISISkj

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:e7ffe7ffffffff00
Perceptual Hash:f3b3118c4ce662ae
Difference Hash:4c0c4d0e120800cc
Wavelet Hash:24242400c3e7df00
Color Hash:#c5b187

Other Hashes

Crop Resistant:4c0c4d0e32080000,430cd0c88cd42403

Scan History

Scan history not available

Unable to load historical scan data