ScanMalware.com

Security Scan Report: novobancoinfo.sbs

Redirected to: https://www.novobanco.pt/error/404?ref=contacto

Site favicon
Submitted: Oct 23, 2025, 3:59:03 PMCompleted: Oct 23, 2025, 4:00:18 PMpubliccompleted
Loading additional data...

Summary

This website contacted 21 IPs in 4 countries across 7 domains to perform 46 HTTP transactions. The main domain is novobanco.pt and was registered NaN years ago.

Submitted URL: https://novobancoinfo.sbs/

Effective URL: https://www.novobanco.pt/error/404?ref=contactoRedirected

AI Security Verdict

Low Risk

Confidence: 72%

2
Risk Score

Low‑risk site that mirrors novobanco content; no active phishing or malware observed.

Risk Factors
Brand impersonation on an unranked domain
Scraped content from the official novobanco site without clear purpose
Safety Factors
Domain is over 11 years old
Final destination domain matches the legitimate brand
No credential or payment collection forms
Domain age information unavailable

Details

Page Title

404 | novobanco

Scan Type

public

Language

🇵🇹

Portuguese

(80% confidence)

Category

suspicious phishing

(78%)

Domain Information

The domain name 'novobancoinfo.sbs' uses the .sbs top-level domain while skipping any subdomain. Count 13 characters in 'novobancoinfo' split between 6 vowels and 7 consonants. It segments into three words: novo, banco, info. Expect 4 characters per word on average. Most frequently, 'novo' shows up in Chinese (Pinyin). Usage also turns up in Portuguese (Brazil) and Galician contexts. Overall, 'novobancoinfo.sbs' reads as Chinese (Pinyin).

Screenshot

Security scan screenshot of https://novobancoinfo.sbs/

Page Load Overview

42.73s
Total Load Time
46
HTTP Requests
7
Domains
1.1 MB
Total Size

Language Analysis

Primary Language

🇵🇹Portuguese
Code: pt
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:pt
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:pt
Text Length:20,664 chars
Detector Agreement:100%

Website Classification

Primary Category

suspicious phishing78% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

suspicious phishing
78%
other
34%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
6146.75.123.10Frankfurt am Main, Hesse, Germany
AS54113FASTLY
2104.18.87.42United States
AS13335CLOUDFLARENET
2104.18.86.42United States
AS13335CLOUDFLARENET
223.213.165.28Frankfurt am Main, Hesse, Germany
AS16625AKAMAI-AS
243.159.99.34Singapore
AS139341ACE
218.200.76.68Dublin, Leinster, Ireland
AS16509AMAZON-02
234.255.69.137Dublin, Leinster, Ireland
AS16509AMAZON-02
252.16.198.27Dublin, Leinster, Ireland
AS16509AMAZON-02
22606:4700::6812:562aUnited States
AS13335CLOUDFLARENET
252.16.82.132Dublin, Leinster, Ireland
AS16509AMAZON-02
4621--

Detected Technologies3

Java
50%
Adobe Experience Manager
45%
Google Tag Manager
30%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T109B49872E46A0837A1D7628BE730A71759D2F806C4CB7A81B1EFE38C13E6D849641D7D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:G+imbmY0q+fSjm3mPLGQjTrNpCIm+ST2FZ9XNgb:G+imbmY0q7jm3mzHTrNpCIm+ST2FZ9X4

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:501267:BhgZJEkAPAjqwAhNLTRIJFX2g9QbMMJGYFrBElISyBggCFBAEOx+dYoI45ECkAAxkAQrRgKEDBI4MkiQEGiYwJERmnpogQgo

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0000000000e0f0f0
Perceptual Hash:e31ce7701de73086
Difference Hash:33330d333389cbc9
Wavelet Hash:0081c181fff7f1f1
Color Hash:#9e87c5

Other Hashes

Crop Resistant:2d2d2d2d2d2e2e2e,e0e998ccac9ea888,33330c3b328ccbcb

Scan History

Scan history not available

Unable to load historical scan data