ScanMalware.com

Security Scan Report: nflweakly.substack.com

Submitted: Jan 3, 2026, 6:20:54 PMCompleted: Jan 3, 2026, 6:23:30 PMpubliccompleted
Loading additional data...

Summary

This website contacted 9 IPs in 1 country across 7 domains to perform 159 HTTP transactions. The main domain is nflweakly.substack.com and was registered NaN years ago.

Submitted URL: https://nflweakly.substack.com/p/non-depressing-super-bowl-matchups

The Cisco Umbrella rank of the primary domain is #9,753 of the top 1 million websitesTop 10K Site

AI Security Verdict

Low Risk

Confidence: 85%

3
Risk Score

Legitimate Substack blog with minor risk due to a linked suspicious static domain and many redirects.

Risk Factors
Link to a known malicious Indicators of Compromise domain (ttwstatic.com)
High number of redirects (13) may indicate tracking or redirection abuse
Safety Factors
Hosted on Substack, a reputable publishing platform
Domain age > 15 years and well‑established reputation
Cisco Umbrella ranking within top 10,000
No credential‑harvesting or payment forms present
Domain age information unavailable

Details

Page Title

Non-Depressing Super Bowl Matchups - NFL, Weakly

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

news/blog

(90%)

Domain Information

The domain 'nflweakly.substack.com' uses the commercial generic top-level domain (.com), featuring subdomain 'nflweakly'. The second-level label 'substack' is 8 characters long with two vowels and six consonants. Tokenizing the label suggests 2 words: sub, stack. Average segment length settles at 4 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://nflweakly.substack.com/p/non-depressing-super-bowl-matchups

Page Load Overview

17.07s
Total Load Time
280
HTTP Requests
18
Domains
14.6 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:4,166 chars
Detector Agreement:80%

Website Classification

Primary Category

news/blog90% confidence
Type: dynamic
Method: structural

All Detected Categories

news/blog
90%
corporate
70%

Detected Features

Articles
Comments
OG: article
Schema.org

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
32108.138.7.69United States
AS16509AMAZON-02
31104.18.37.200United States
AS13335CLOUDFLARENET
3154.192.35.11United States
AS16509AMAZON-02
3154.192.35.100United States
AS16509AMAZON-02
31142.250.185.163United States
AS15169GOOGLE
31151.101.130.217United States
AS54113FASTLY
3116.182.73.145Ashburn, Virginia, United States
AS16509AMAZON-02
31151.101.66.217UnknownUnknown
31172.64.150.56United States
AS13335CLOUDFLARENET
2809--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T121F3E8618C11C41F82028CAFBBBEBF2D21CED05B9661DC54B9EC893413C1D766F67A66

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:DHZ3R6eNhawDLs568D9p0p6xI881GJPWn1ilDFSVSx/R:DHKep3s3xI881GJPFdFSVMR

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:172132:AS9EloVsFxjiDBgAkxTBOAQe48Q8B0w0EsgEQAk5YABGHylKANMM5EhEEQgCASAAYrIwBQ4kJCJCgSSIWQo6hB0wAEQpgq2I

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:7f3f7f3fff7f0100
Perceptual Hash:808007f1ffe0f07f
Difference Hash:80e0a0e040c0c16b
Wavelet Hash:7e1e7e1efe3e0000
Color Hash:#522d86

Other Hashes

Crop Resistant:80e0a0e040c0c16b

Scan History

Scan history not available

Unable to load historical scan data