ScanMalware.com

Security Scan Report: t.co

Redirected to:
http://x3spnmc7.duckdns.org/
Submitted: Nov 20, 2025, 2:52:27 AMCompleted: Nov 20, 2025, 2:55:44 AMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 2 countries across 2 domains to perform 5 HTTP transactions. The main domain is x3spnmc7.duckdns.org.

Submitted URL: https://t.co/dxMn75Bm9h

Effective URL: http://x3spnmc7.duckdns.org/Redirected

The Cisco Umbrella rank of the primary domain is #1,176 of the top 1 million websitesTop 10K Site

AI Security Verdict

High Risk

Confidence: 95%

9
Risk Score

The URL redirects to a newly created duckdns.org subdomain flagged as malicious; treat as high‑risk.

Risk Factors
Malicious Indicators of Compromise match on primary domain
Circular redirect (URL loop) detected
Newly registered or age‑unknown domain
Use of a dynamic DNS service (duckdns.org) commonly abused by attackers
Domain age information unavailable

Details

Page Title

404 Not Found

Scan Type

public

Language

🇺🇸

English

(100% confidence)

Category

unknown

(0%)

Domain Information

The domain name 't.co' uses the Colombian country-code top-level domain (.co). Count 1 characters in 't' containing 0 vowels alongside one consonant. Splitting it apart reveals one word: t. Median word length is one character. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://t.co/dxMn75Bm9h

Page Load Overview

5.86s
Total Load Time
5
HTTP Requests
2
Domains
1 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:100%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:100%
Script Type:Latin
Text Length:27 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: static
Method: structural

All Detected Categories

No categories detected

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
3162.159.140.229United States
AS13335CLOUDFLARENET
2103.80.133.9Seoul, Seoul, South Korea
AS205960Hdtidc Limited
1172.66.0.227United States
AS13335CLOUDFLARENET
53--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1DAC08CB7C021890FAB3026F8C9827894AF08920DC1321E44B6D0E2A6F448EEB848329C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3:qVZxVsws+7L9Hv8+5BQhBbZ6i83PvXE11YIIPvdHYaXEQoqa:qzxV/5VHHoB96D3ne1k9Ycw

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:1:0:348fc553335bda82dffebf49122dd182

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:7fffffffffffffff
Perceptual Hash:870707070f0f1f3f
Difference Hash:8000000000000000
Wavelet Hash:70f0f0f0f0f0f0f0
Color Hash:#68862d

Other Hashes

Crop Resistant:8000000000000000

Scan History

Scan history not available

Unable to load historical scan data