ScanMalware.com

Security Scan Report: qaaydy.icu

Redirected to:
https://qaaydy.icu/
Submitted: Apr 21, 2026, 11:19:57 AMCompleted: Apr 21, 2026, 11:21:07 AMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 2 countries across 2 domains to perform 1 HTTP transaction. The main domain is qaaydy.icu and was registered NaN years ago.

Submitted URL: http://qaaydy.icu/

Effective URL: https://qaaydy.icu/Redirected

AI Security Verdict

High Risk

Confidence: 95%

9
Risk Score

The site impersonates PayPal on a brand‑new, unranked domain and triggers a critical IDS malware alert, indicating high‑risk phishing activity.

Risk Factors
Brand impersonation on a newly registered, unranked domain
Critical IDS malware alert
Domain age <7 days (critical multiplier)
Unranked domain reputation
Domain age information unavailable

Details

Bot Protection Detected

This website is protected by rate_limit bot protection. Our scanner was challenged or blocked during access.

Page Title

蛮厚微博 - 随时随地发现新鲜事

Scan Type

public

Language

🇨🇳

Chinese

(60% confidence)

Category

entertainment media

(70%)

Domain Information

The domain 'qaaydy.icu' uses the .icu top-level domain without a subdomain. The core label 'qaaydy' covers 6 characters containing two vowels alongside 4 consonants. Tokenizing the label suggests 3 words: qa, ay, dy. The median word length lands at two characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://qaaydy.icu/

Page Load Overview

1.61s
Total Load Time
10
HTTP Requests
3
Domains
5 KB
Total Size

Language Analysis

Primary Language

🇨🇳Chinese
Code: zh
Confidence:60%
Script:Han
Direction:ltr

Detection Details

Language Code:zh
Detection Confidence:60%
Script Type:Han
HTML Lang Attribute:zh-CN
Text Length:693 chars
Detector Agreement:100%

Website Classification

Primary Category

entertainment media70% confidence
Type: static
Method: ml+structural

All Detected Categories

entertainment media
70%
news media journalism
56%
documentation technical
54%
social media network
48%
government public service
44%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
543.159.107.113Singapore
AS139341ACE
5207.57.230.134United States
AS54801Zillion Network Inc.
102--

Detected Technologies1

X-UA-Compatible
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T19EF15B1296CCA8370235A9C9ED74D3BDE08374B5CD571F02A8999E4D9D4EF92A80328F

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

96:tzFQxSXwXjsMncPDSxnaQt8WA+CFYP99kLFDt/dfy:5FQxSXwXQMaYA+COPs5fy

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:8025:AAyIYBKIIhUGRIDAFiEaTENjBOWKgAw5GAGKqIBlAALsMAwE0AwMAQSkAEg4AOOIAAsVUgyieg0cFMEEUsUuKIwAgS1DFZAA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:9e3c3c3c3c3c3c3c
Perceptual Hash:d43c383c3c3cb8bc
Difference Hash:3840505050545450
Wavelet Hash:9c3c3c3c3c3c3c3c
Color Hash:#9279d2

Other Hashes

Crop Resistant:3840505050545450

Scan History

Scan history not available

Unable to load historical scan data