ScanMalware.com

Security Scan Report: t.co

Redirected to: http://e3oi82zar.duckdns.org/

Submitted: Nov 24, 2025, 6:27:20 AMCompleted: Nov 24, 2025, 6:31:11 AMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 2 countries across 2 domains to perform 5 HTTP transactions. The main domain is e3oi82zar.duckdns.org.

Submitted URL: https://t.co/p4000avWNG

Effective URL: http://e3oi82zar.duckdns.org/Redirected

The Cisco Umbrella rank of the primary domain is #1,176 of the top 1 million websitesTop 10K Site

AI Security Verdict

Confirmed Scam

Confidence: 95%

9
Risk Score

Link redirects to a malicious dynamic DNS domain with circular redirect – treat as confirmed scam.

Risk Factors
Malicious primary domain (duckdns.org) indicator of compromise
Circular redirect indicating URL manipulation
Use of a dynamic DNS subdomain (e3oi82zar.duckdns.org) for redirection
Domain age information unavailable

Details

Page Title

404 Not Found

Scan Type

public

Language

🇪🇸

Spanish

(100% confidence)

Category

unknown

(0%)

Domain Information

Domain 't.co' uses the Colombian country-code top-level domain (.co) and has no subdomain. Its registrable label 't' stretches across 1 characters with 0 vowels and one consonant. Segmentation suggests one word: t. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://t.co/p4000avWNG

Page Load Overview

3.51s
Total Load Time
5
HTTP Requests
2
Domains
1 KB
Total Size

Language Analysis

Primary Language

🇪🇸Spanish
Code: es
Confidence:100%
Script:Latin
Direction:ltr

Detection Details

Language Code:es
Detection Confidence:100%
Script Type:Latin
Text Length:28 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: static
Method: structural

All Detected Categories

No categories detected

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2103.80.133.9Seoul, Seoul, South Korea
AS205960Hdtidc Limited
1162.159.140.229United States
AS13335CLOUDFLARENET
52--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T103D0C2DB0C15C8497AF49620ECF3709C6051D41FDCD84C918088285E41D0AC2DA83111

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

6:p/ntc7pc3MRJVxCc/EWvEAUm0RA/EWxKQ1X9BXW31AXVgJEWvYKOb:plcVc3MxxH/EWvsm0RA/EWv1PXK+XVg+

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:1:0:5c3d9ee0fc840c2780c66be7ab7a5115

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00ffffffffffffff
Perceptual Hash:e666666666666623
Difference Hash:0c00000000000000
Wavelet Hash:00fff3f300000000
Color Hash:#b587c5

Other Hashes

Crop Resistant:0c00000000000000

Scan History

Scan history not available

Unable to load historical scan data