ScanMalware.com

Security Scan Report: candycrush-live.midasplayer.net

Submitted: Dec 3, 2025, 5:22:16 AMCompleted: Dec 3, 2025, 5:24:06 AMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 1 country across 1 domain to perform 2 HTTP transactions. The main domain is candycrush-live.midasplayer.net and was registered NaN years ago.

Submitted URL: https://candycrush-live.midasplayer.net/

The Cisco Umbrella rank of the primary domain is #31,485 of the top 1 million websites

AI Security Verdict

Safe Website

Confidence: 95%

0
Risk Score

No security concerns detected; site appears legitimate.

Safety Factors
Long‑standing domain (over 14 years)
No forms or credential collection
Page returns HTTP 403 (access denied) rather than phishing content
Domain age information unavailable

Details

Page Title

403

Scan Type

public

Language

🇺🇸

English

(59% confidence)

Category

phishing scam

(75%)

Domain Information

Domain 'candycrush-live.midasplayer.net' uses the network infrastructure generic top-level domain (.net) and includes subdomain 'candycrush-live'. Count 11 characters in 'midasplayer' split between four vowels and 7 consonants. It segments into 3 words: mid, as, player. Median word length comes out to three characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://candycrush-live.midasplayer.net/

Page Load Overview

0.21s
Total Load Time
2
HTTP Requests
1
Domains
1 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:59%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:59%
Script Type:Latin
Text Length:88 chars
Detector Agreement:100%

Website Classification

Primary Category

phishing scam75% confidence
Type: static
Method: ml+structural

All Detected Categories

phishing scam
75%
news media journalism
73%
government public service
69%
healthcare medical
67%
adult content
66%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
223.50.131.68Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
023.50.131.86Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
02a02:26f0:7100::213:c672Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
02a02:26f0:7100::213:c68bFrankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
24--

Detected Technologies2

HTTP/3
40%
HSTS
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T11301FE2659F50404B662D6497EA2B36D7F319155D1530A6AB60CC3758BCF2668BC324C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

12:haxgR0iXaM/NqSqLAfYhPMcXV8kcEk6amojlX2MsAV+b5dgZzRalmWa:haKR0iXL/N8hdNbiGMtAHg/aTa

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:692:IQAAAAAAAAAAAAEAABAAAAAAAAABAAAAAAAAAAACAAACAAAAAAAAAAwIACAAAAAAAAAAAAAAAEAAAAAAIAAAAAAGAAAgAAAA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Scan History

Scan history not available

Unable to load historical scan data