ScanMalware.com

Security Scan Report: www.noaa.gov

Submitted: Dec 11, 2025, 7:16:00 AMCompleted: Dec 11, 2025, 7:16:48 AMpubliccompleted
Loading additional data...

Summary

This website contacted 55 IPs in 2 countries across 12 domains to perform 156 HTTP transactions. The main domain is noaa.gov and was registered NaN years ago.

Submitted URL: https://www.noaa.gov/

The Cisco Umbrella rank of the primary domain is #15,444 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 80%

7
Risk Score

Site contains suspicious credential‑harvesting forms; treat as high‑risk phishing.

Risk Factors
Disguised password field
Hidden password field
Unicode evasion in form inputs
Password field without username/email field
Domain age information unavailable

Details

Page Title

National Oceanic and Atmospheric Administration

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

education learning

(67%)

Domain Information

The domain name 'www.noaa.gov' uses the United States government-restricted top-level domain (.gov), featuring subdomain 'www'. Count 4 characters in 'noaa' containing three vowels alongside 1 consonant. Segmentation suggests 1 word: noaa. Median word length comes out to four characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.noaa.gov/

Page Load Overview

11.57s
Total Load Time
156
HTTP Requests
12
Domains
5.1 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:4,116 chars
Detector Agreement:100%

Website Classification

Primary Category

education learning67% confidence
Type: spa
Method: ml+structural

All Detected Categories

education learning
67%
government public service
51%
government
48%
news/blog
20%

Detected Features

Search
Articles
OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
4815.200.195.107Boardman, Oregon, United States
AS8987Amazon Data Services Ireland Ltd
2216.58.212.136United States
AS15169GOOGLE
265.8.131.108United States
AS16509AMAZON-02
2142.250.184.195United States
AS15169GOOGLE
218.193.9.243Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
2142.251.141.106United States
AS15169GOOGLE
254.156.169.223Ashburn, Virginia, United States
AS14618AMAZON-AES
265.8.131.120United States
AS16509AMAZON-02
218.158.130.83Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
2188.114.96.3United States
AS13335CLOUDFLARENET
15655--

Detected Technologies9

X-UA-Compatible
100%
Open-Graph-Protocolvwebsite
100%
MetaGenerator
100%
Google-AnalyticsvUniversal
100%
Drupalv10
100%
PHP
50%
Amazon Web Services
50%
HSTS
40%
Amazon CloudFront
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1317410585BECA92D284F64A67347FD42EA244001BE87DE66BBBD734DCFCA5C430D5A20

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:RrcXKX2EpB4Kd6y/LZE+8wf+T/Fc2KR9Y0ZIaVN96j0mlK8JR4lPq29uUJ0gA78A:RrvB4Kd6y+

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:342763:bMGSJmGoYEQIERIEVQp9AAAUVHDcwABTBQELKBWKDgEGCpGIAGRkQiAqpE0sARQRKwoJuiBgJpiCJUnAUemIUCIkAKoG+iAC

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0003030800ffffff
Perceptual Hash:a03fa6475f997043
Difference Hash:3fbf9f13c38db0ac
Wavelet Hash:000f070800ffffff
Color Hash:#87adc5

Other Hashes

Crop Resistant:3fbf9f13c38db0ac,bfbf9f12c28eb0ac,8098c5ce9c5c7c81

Scan History

Scan history not available

Unable to load historical scan data