ScanMalware.com

Security Scan Report: steuerformulare.movandikafilsm.fun

Submitted: Apr 3, 2026, 5:59:57 AMCompleted: Apr 3, 2026, 6:01:14 AMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 2 countries across 3 domains to perform 1 HTTP transaction. The main domain is steuerformulare.movandikafilsm.fun and was registered NaN years ago.

Submitted URL: https://steuerformulare.movandikafilsm.fun/

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

Site hosts a known malicious IP and is unranked; treat as high‑risk and do not interact.

Risk Factors
Presence of a malicious IP address (Indicators of Compromise)
Unranked domain with recent registration (moderate new domain)
Domain age information unavailable

Details

Page Title

steuerformulare.movandikafilsm.fun

Scan Type

public

Language

🇺🇸

English

(26% confidence)

Category

documentation technical

(57%)

Domain Information

The domain 'steuerformulare.movandikafilsm.fun' uses the .fun top-level domain; it also runs on subdomain 'steuerformulare'. The second-level label 'movandikafilsm' is 14 characters long split between 5 vowels and 9 consonants. Breaking it apart gives 5 words: mova, nd, ika, fils, m. Median word length is three characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://steuerformulare.movandikafilsm.fun/

Page Load Overview

0.56s
Total Load Time
5
HTTP Requests
3
Domains
156 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:26%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:26%
Script Type:Latin
Text Length:236 chars
Detector Agreement:67%

Website Classification

Primary Category

documentation technical57% confidence
Type: static
Method: ml+structural

All Detected Categories

documentation technical
57%
finance banking
56%
entertainment media
48%
adult content
40%
government public service
39%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
3142.251.110.94United States
AS15169Google LLC
1192.178.183.95United States
AS15169Google LLC
1198.251.89.164Luxembourg, Luxembourg, Luxembourg
AS53667FranTech Solutions
53--

Detected Technologies3

X-UA-Compatible
100%
LiteSpeed
40%
HTTP/3
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T13EB32F9203FF57DBAA8E1349969A86893DE0CADBC050D4C4B76E1512EF0CCD15C4F79A

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:9Nz3ZT87yXTJW/D7cG3MhSLPJ9RjhbVBgGq:LgGkLXVzq

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:108103:AgqMkYEGgHBUwEYGAEAGvigLrBZCoAKUIIjTSAAAywHAKIjENS0SCCOAUXQxAtUzZiXOgAgQUAUUWCIDBQEAmICNDCCADHUR

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffc3f7e7e7dfffff
Perceptual Hash:a666899933ceccc6
Difference Hash:160e2d4d4d360000
Wavelet Hash:8181a5a58181ffff
Color Hash:#95c587

Other Hashes

Crop Resistant:160e2d4d4d360000

Scan History

Scan history not available

Unable to load historical scan data