ScanMalware.com

Security Scan Report: www.layananonline.dukcapil-kemendagri.online

Redirected to: https://www.layananonline.dukcapil-kemendagri.online/

Submitted: Apr 3, 2026, 8:58:33 AMCompleted: Apr 3, 2026, 8:59:48 AMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 4 HTTP transactions. The main domain is layananonline.dukcapil-kemendagri.online and was registered NaN years ago.

Submitted URL: http://www.layananonline.dukcapil-kemendagri.online/

Effective URL: https://www.layananonline.dukcapil-kemendagri.online/Redirected

AI Security Verdict

High Risk

Confidence: 85%

7
Risk Score

Site shows strong phishing indicators despite no forms; likely a malicious impersonation of a government service.

Risk Factors
Critical IDS alert indicating possible phishing
Unranked domain mimicking a government service
Highly obfuscated JavaScript (critical score 100/100)
Domain age information unavailable

Details

Page Title

One moment, please...

Scan Type

public

Language

🇮🇩

ID

(50% confidence)

Category

government public service

(62%)

Domain Information

Within the modern generic top-level domain (.online), 'www.layananonline.dukcapil-kemendagri.online' is registered with subdomain 'www.layananonline'. The second-level label 'dukcapil-kemendagri' is 19 characters long with seven vowels and 11 consonants, along with one hyphen. Splitting it apart reveals seven words: d, uk, cap, il, k, emend, agri. Average segment length settles at 2 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://www.layananonline.dukcapil-kemendagri.online/

Page Load Overview

4.01s
Total Load Time
40
HTTP Requests
1
Domains
1.4 MB
Total Size

Language Analysis

Primary Language

🇮🇩Indonesian
Code: id
Confidence:50%
Script:Unknown
Direction:ltr

Detection Details

Language Code:id
Detection Confidence:50%
Script Type:Unknown
HTML Lang Attribute:en
Text Length:98 chars
Detector Agreement:100%
Language mismatch: Declared as en but detected as id

Website Classification

Primary Category

government public service62% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

government public service
62%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
4036.50.77.57Indonesia
AS138115PT Deneva
401--

Detected Technologies2

X-UA-Compatible
100%
jQuery
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1B332D84CAEA1B270F30307FEBB6B692D131465D32408C488F94EAEE0BF0768D559795D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:GXHNsGeTHQpD+da6+8QPUV7lrDyjFrxzND0AuL8Xpc4OAON:GXX+/zV7SFZND0AuLUc4aN

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:11618:UGAaYlAWrISsAGXrQQLCMhtASYppEjg8AogIIEAAIpA8AaEghgBBqUAcAJSBNJQVsCqA0gKcTSCNFMA0LBCJbQHCAIIEhEcz

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffffff81dbffffff
Perceptual Hash:bf2fc0c03f3fc0c0
Difference Hash:0000012323000000
Wavelet Hash:f3f3818100000000
Color Hash:#7dd22d

Other Hashes

Crop Resistant:0000012323000000

Scan History

Scan history not available

Unable to load historical scan data