ScanMalware.com

Security Scan Report: static.whatsapp.net

Submitted: Nov 25, 2025, 11:33:39 PMCompleted: Nov 25, 2025, 11:35:47 PMpubliccompleted
Loading additional data...

Summary

This website contacted 6 IPs in 1 country across 3 domains to perform 30 HTTP transactions. The main domain is static.whatsapp.net.

Submitted URL: https://static.whatsapp.net/

The Cisco Umbrella rank of the primary domain is #341 of the top 1 million websitesTop 1K Site

AI Security Verdict

High Risk

Confidence: 88%

8
Risk Score

Phishing page impersonating Facebook on static.whatsapp.net – high risk.

Risk Factors
Phishing login form collecting user credentials
Impersonation of a well‑known brand (Facebook) on a domain not associated with that brand
Unexpected login form on a static content subdomain (static.whatsapp.net)
Domain age information unavailable

Details

Page Title

Page Not Found

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(84%)

Domain Information

You're looking at domain 'static.whatsapp.net' on the network infrastructure generic top-level domain (.net), featuring subdomain 'static'. The second-level label 'whatsapp' is 8 characters long containing 2 vowels alongside six consonants. It segments into three words: what, s, app. Median word length is 3 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://static.whatsapp.net/

Page Load Overview

0.51s
Total Load Time
30
HTTP Requests
3
Domains
255 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:753 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software84% confidence
Type: static
Method: ml+structural

All Detected Categories

technology software
84%
social media network
69%
documentation technical
64%
adult content
60%
phishing scam
34%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
25157.240.0.6Frankfurt am Main, Hesse, Germany
AS32934FACEBOOK
52a03:2880:f084:105:face:b00c:0:3Frankfurt am Main, Hesse, Germany
AS32934FACEBOOK
52a03:2880:f277:1cd:face:b00c:0:167Frankfurt am Main, Hesse, Germany
AS32934FACEBOOK
52a03:2880:f177:185:face:b00c:0:25deFrankfurt am Main, Hesse, Germany
AS32934FACEBOOK
4157.240.0.60Frankfurt am Main, Hesse, Germany
AS32934FACEBOOK
1157.240.0.35Frankfurt am Main, Hesse, Germany
AS32934FACEBOOK
306--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T122832B2A730CDC331A334FD594C37509E99E112BCE9869D1D0DEABBD15CF6B8720299A

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:RR9PVtpiq20bWZ7+5nff0xgVZCj4F3+tj8OCqocq9YPmvog/GcjvcMNubjL8D9hq:LvlbWV+5nffNLCje5RNyV0VFMu1Y

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:86380:AmMXMk0gCKCVSgkGOBkKAS2gAFAwQCAUBoABcIgEjQFAAMcwEmAFQAgQgEIIYklwmQ0i5WgSgATOKiiaQBEADxUQCHAwFAJK

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0003fffcff9f3f3f
Perceptual Hash:9f70253e6a017e87
Difference Hash:4f0e30982171d0d5
Wavelet Hash:00009ff8bd9d1f1f
Color Hash:#40bf46

Other Hashes

Crop Resistant:4f0e30982171d0d5,0002004343404786,102c32b2b2100000,0f061712b0b2b4b4

Scan History

Scan history not available

Unable to load historical scan data