ScanMalware.com

Security Scan Report: gtk.belajar.kemendikdasmen.go.id

Site favicon
Submitted: May 11, 2026, 1:34:38 AMCompleted: May 11, 2026, 1:36:24 AMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 3 countries across 6 domains to perform 16 HTTP transactions. The main domain is gtk.belajar.kemendikdasmen.go.id and was registered NaN years ago.

Submitted URL: https://gtk.belajar.kemendikdasmen.go.id

The Cisco Umbrella rank of the primary domain is #79,661 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 85%

7
Risk Score

The site shows a critical malware C2 beacon alert despite being a government domain with no forms, indicating high risk of malware distribution.

Risk Factors
Critical IDS alert indicating possible command‑and‑control activity
High severity IDS alerts for HTTP POST traffic
Presence of external CDN and analytics domains (common but noted)
Absence of legitimate user interaction elements (forms) suggests hidden malicious activity
Domain age information unavailable

Details

Page Title

Portal SIMPKB - Portal Layanan Program GTK Kemendikdasmen

Scan Type

public

Language

🇮🇩

ID

(42% confidence)

Category

government public service

(74%)

Domain Information

The domain 'gtk.belajar.kemendikdasmen.go.id' uses the Indonesian country-code top-level domain (.go.id) and includes subdomain 'gtk.belajar'. The second-level label 'kemendikdasmen' is 14 characters long split between five vowels and nine consonants. Splitting it apart reveals 5 words: ke, men, dik, das, men. Median word length is three characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://gtk.belajar.kemendikdasmen.go.id

Page Load Overview

11.97s
Total Load Time
31
HTTP Requests
7
Domains
229 KB
Total Size

Language Analysis

Primary Language

🇮🇩Indonesian
Code: id
Confidence:42%
Script:Unknown
Direction:ltr

Detection Details

Language Code:id
Detection Confidence:42%
Script Type:Unknown
Text Length:2,384 chars
Detector Agreement:80%

Website Classification

Primary Category

government public service74% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

government public service
74%
education learning
64%
government
40%
corporate
35%

Detected Features

OG: website
Schema.org

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
7142.251.14.95United States
AS15169Google LLC
6103.150.192.230Jakarta, Jakarta, Indonesia
AS133800PT Biznet Gio Nusantara
6140.245.127.192Loyang, Singapore
AS31898Oracle Corporation
6142.251.110.94United States
AS15169Google LLC
6142.250.154.97United States
AS15169Google LLC
315--

Detected Technologies5

Open-Graph-Protocolvwebsite
100%
Vue.js
50%
Node.js
50%
Google Analytics
35%
Nuxt.js
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T11744A5D9DD40853E3A5FC7ACA7AEDEDD73697580DD22CB96F02E513052C21A8B42EB10

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:pDyg+YfpuZ6vYzRlzxdzBHEAZjXWL89PIxvXQ7:Jyg+YfpuZ5zRlzxdz1PJ

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:260727:gYN0YqxCBFAAQQqQMZKgIdJsBcDWcVBRBuGIDHEChAAAHkICERGEiM60wAEQoIcjAGK7pWk64IMH6sRQnQmgQKOcaGOkiCaA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:e7c343bfb6feffd6
Perceptual Hash:f42360cece9b7161
Difference Hash:488e9e746464b426
Wavelet Hash:e642021cb4f6dfd2
Color Hash:#5372ac

Other Hashes

Crop Resistant:488e9e746464b426

Scan History

Scan history not available

Unable to load historical scan data