ScanMalware.com

Security Scan Report: advisory-salmon-j1kqrsyizo-sz17s2req7.edgeone.dev

Submitted: Mar 22, 2026, 8:38:30 AMCompleted: Mar 22, 2026, 8:39:53 AMpubliccompleted
Loading additional data...

Summary

This website contacted 9 IPs in 2 countries across 9 domains to perform 1 HTTP transaction. The main domain is advisory-salmon-j1kqrsyizo-sz17s2req7.edgeone.dev and was registered NaN years ago.

Submitted URL: https://advisory-salmon-j1kqrsyizo-sz17s2req7.edgeone.dev/

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

Phishing page impersonating Telegram, hosted on a new edgeone.dev subdomain with a known malicious IP.

Risk Factors
Malicious IP indicator of compromise
Brand impersonation of Telegram on an unranked domain
New subdomain on a free hosting platform
Phishing prompt requesting personal phone number
Domain age unknown (treated as newly registered)
Domain age information unavailable

Details

Page Title

Telegram 2026

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

social media network

(90%)

Domain Information

The domain name 'advisory-salmon-j1kqrsyizo-sz17s2req7.edgeone.dev' uses the developer-focused generic top-level domain (.dev) with subdomain 'advisory-salmon-j1kqrsyizo-sz17s2req7'. The core label 'edgeone' covers 7 characters holding 4 vowels versus 3 consonants. Segmentation suggests two words: edge, one. Median word length comes out to 3.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://advisory-salmon-j1kqrsyizo-sz17s2req7.edgeone.dev/

Page Load Overview

1.43s
Total Load Time
6
HTTP Requests
5
Domains
686 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:97 chars
Detector Agreement:100%

Website Classification

Primary Category

social media network90% confidence
Type: static
Method: ml+structural

All Detected Categories

social media network
90%
technology software
36%
news media journalism
33%
cryptocurrency blockchain
31%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
613.35.58.128United States
AS54113
03.143.76.93United States
AS14907
0185.15.59.240United States
AS14907Wikimedia Foundation Inc.
018.194.168.33United States
AS16509
03.174.46.18United StatesUnknown
018.138.5.31United StatesUnknown
043.174.246.29Singapore
AS139341ACE
0185.199.108.133United States
AS54113Fastly, Inc.
0104.18.11.70United StatesUnknown
69--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T19B22842332E324155593A2763AE3970A3134E107D909CF787D9C6198CFCAE9489F7E9C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:c53/OVBmFrA0vInbVq0e9PHO+BHytZD7TrTS3MJ5mOciwsphpBZWONI5pQFAkQqs:c5sdCMTcrihpXjALF

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:10298:sREELAR4AA5kUHCSEIQiaCAQOlVAQbsxJBuC3YFkY8AgGCFULGbZSJqyhnIgZD1UQTkCHAAiinojCVgN1BAcwKDodAMAQdjI

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffffe7e7e7e7ffff
Perceptual Hash:b3cccc3399662399
Difference Hash:0000080c0c0c0800
Wavelet Hash:3c3c242427273f3f
Color Hash:#d0e06c

Other Hashes

Crop Resistant:0000080c0c0c0800

Scan History

Scan history not available

Unable to load historical scan data