ScanMalware.com

Security Scan Report: tf2tf4.icu

Submitted: Dec 3, 2025, 7:01:48 AMCompleted: Dec 3, 2025, 7:04:02 AMpubliccompleted
Loading additional data...

Summary

This website contacted 9 IPs in 2 countries across 2 domains to perform 3 HTTP transactions. The main domain is tf2tf4.icu and was registered NaN years ago.

Submitted URL: https://tf2tf4.icu/1ric5n7p/5nssud/FbgfL4

AI Security Verdict

Safe Website

Confidence: 92%

0
Risk Score

No security concerns detected; the site only shows a 404 error.

Safety Factors
No malicious Indicators of Compromise matches found
No credential or payment forms detected
Page displays a standard 404 error
Domain age information unavailable

Details

Page Title

N/A

Scan Type

public

Language

🇪🇸

CA

(50% confidence)

Category

healthcare medical

(46%)

Domain Information

Within the .icu top-level domain, 'tf2tf4.icu' is registered. The core label 'tf2tf4' covers 6 characters holding zero vowels versus 4 consonants, notching 2 digits. Breaking it apart gives six words: t, f, 2, t, f, 4. Median word length comes out to 1 character. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://tf2tf4.icu/1ric5n7p/5nssud/FbgfL4

Page Load Overview

0.26s
Total Load Time
3
HTTP Requests
2
Domains
22 KB
Total Size

Language Analysis

Primary Language

🇪🇸CA
Code: ca
Confidence:50%
Script:Unknown
Direction:ltr

Detection Details

Language Code:ca
Detection Confidence:50%
Script Type:Unknown
HTML Lang Attribute:en
Text Length:45 chars
Detector Agreement:100%
Language mismatch: Declared as en but detected as ca

Website Classification

Primary Category

healthcare medical46% confidence
Type: static
Method: ml+structural+ocr_tiebreaker

All Detected Categories

healthcare medical
46%
finance banking
46%
news media journalism
43%
real estate property
41%
phishing scam
39%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
32.16.241.13Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
2188.114.96.3United States
AS13335CLOUDFLARENET
12.16.10.91Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
0188.114.97.3United States
AS13335CLOUDFLARENET
02a02:26f0:7100::1720:eec2Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
02a02:26f0:7100::1720:eef1Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
02.16.241.4Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
02a06:98c1:3121::3United States
AS13335CLOUDFLARENET
02a06:98c1:3120::3United States
AS13335CLOUDFLARENET
39--

Detected Technologies3

HTTP/3
40%
Cloudflare Bot Management
40%
Cloudflare
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T167319C4B42F30005A957A4B81FF663503594D453464FDDA43ECCB294DF8D292AEE338C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

48:T/iGgFz9llUnoDUKlyon89j1lZSbs1spyJ/kAh0N:TzgFz3lUAUIyzB1lZNqpyJ/jU

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:1850:gQCAIAAAARABCAAAIAAAgAEgEAGEBAAAAEAAAAAACAAEAAAAAAAAEAgACgBABAABEASAACBAgAIBAGACAAIAAAAAAAAgAAAj

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:1818181818181800
Perceptual Hash:9999666633333366
Difference Hash:12b2b23232323210
Wavelet Hash:3838383818183c18
Color Hash:#361f93

Other Hashes

Crop Resistant:fcb24d45559d8dd3,5a54a5aad2d46c79,12b2b23232323210,45c484a4d4aaaaaa

Scan History

Scan history not available

Unable to load historical scan data