ScanMalware.com

Security Scan Report: evil-scarlet-wddqy6gxcz-bixhft77l5.edgeone.app

Submitted: Mar 29, 2026, 2:56:15 AMCompleted: Mar 29, 2026, 2:57:32 AMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 2 countries across 4 domains to perform 1 HTTP transaction. The main domain is evil-scarlet-wddqy6gxcz-bixhft77l5.edgeone.app and was registered NaN years ago.

Submitted URL: https://evil-scarlet-wddqy6gxcz-bixhft77l5.edgeone.app/

The Cisco Umbrella rank of the primary domain is #455,732 of the top 1 million websites

AI Security Verdict

Moderate Risk

Confidence: 70%

4
Risk Score

Site references PayPal but lacks login/payment forms; new low‑rank subdomain with obfuscated scripts warrants moderate caution.

Risk Factors
New subdomain on a free hosting platform
Low reputation ranking for a domain displaying PayPal branding
Highly obfuscated JavaScript (potentially hiding malicious behavior)
Safety Factors
No forms (no credential or payment collection)
No malicious Indicators of Compromise matches
No YARA JavaScript malware patterns detected
No network IDS alerts
Domain age information unavailable

Details

Page Title

GlobPAY | Pagamentos globais

Scan Type

public

Language

🇵🇹

Portuguese

(80% confidence)

Category

finance banking

(83%)

Domain Information

The domain name 'evil-scarlet-wddqy6gxcz-bixhft77l5.edgeone.app' uses the application-focused generic top-level domain (.app), featuring subdomain 'evil-scarlet-wddqy6gxcz-bixhft77l5'. Its registrable label 'edgeone' stretches across 7 characters split between four vowels and three consonants. It segments into two words: edge, one. Expect 3.5 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://evil-scarlet-wddqy6gxcz-bixhft77l5.edgeone.app/

Page Load Overview

0.71s
Total Load Time
7
HTTP Requests
4
Domains
222 KB
Total Size

Language Analysis

Primary Language

🇵🇹Portuguese
Code: pt
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:pt
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:pt
Text Length:404 chars
Detector Agreement:33%

Website Classification

Primary Category

finance banking83% confidence
Type: static
Method: ml+structural

All Detected Categories

finance banking
83%
corporate business
65%
technology software
55%
government public service
41%
cryptocurrency blockchain
34%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
4151.101.129.229United States
AS139341
143.152.26.58Singapore
AS139341ACE
1104.17.25.14United States
AS13335Cloudflare, Inc.
1172.67.68.11United StatesUnknown
74--

Detected Technologies2

Tailwind CSS
30%
jsDelivr
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1D423F7A672F204B648D794FAE7436B687825C107DA0BC544BFACC5804FC3DA5DEA7288

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:zFGChnebobOFfsA4WI/zhhSHCYwOK2bqog:Jhe8KsPhSHCYTG

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:48423:DG5AZCKGEYNbESISwRhyaCWCYyWwCBAEiA9CmQygZAgIgXAkGHtNglKQEwALoSVgfSBQAIKHyRnMichALC4GsyRAIJIxtNBK

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:5a7c7e0000000000
Perceptual Hash:d0d0d07c3c35b5d3
Difference Hash:b6f0e83200000000
Wavelet Hash:fefe7eff00000000
Color Hash:#c5c387

Other Hashes

Crop Resistant:b6f0e83200000000

Scan History

Scan history not available

Unable to load historical scan data