ScanMalware.com

Security Scan Report: kucoqinlogin.webflow.io

Site favicon
Submitted: Oct 11, 2025, 3:01:46 PMCompleted: Oct 11, 2025, 3:02:30 PMpubliccompleted
Loading additional data...

Summary

This website contacted 12 IPs in 1 country across 3 domains to perform 6 HTTP transactions. The main domain is kucoqinlogin.webflow.io.

Submitted URL: https://kucoqinlogin.webflow.io/

AI Security Verdict

High Risk

Confidence: 88%

8
Risk Score

Impersonates KuCoin on an unranked Webflow domain; likely phishing.

Risk Factors
Impersonation of the KuCoin brand on an unranked, unrelated domain
Page title suggests a login/guest mode page for KuCoin, a classic phishing lure
Domain is not in the Cisco Umbrella top 1M, indicating low reputation
Domain age information unavailable

Details

Page Title

KuCoin Guest Mode: Quick Access to Market Data Without Login @ % Kucoin Login

Scan Type

public

Language

🇺🇸

English

(59% confidence)

Category

cryptocurrency blockchain

(80%)

Domain Information

You're looking at domain 'kucoqinlogin.webflow.io' on the British Indian Ocean Territory country-code top-level domain (.io); it also runs on subdomain 'kucoqinlogin'. The core label 'webflow' covers 7 characters with two vowels and 5 consonants. Word splitting yields two words: web, flow. Median word length comes out to 3.5 characters. 'web' most often appears in Chinese (Pinyin). It also appears in English and Vietnamese contexts. Overall, 'kucoqinlogin.webflow.io' reads as Chinese (Pinyin).

Screenshot

Security scan screenshot of https://kucoqinlogin.webflow.io/

Page Load Overview

17.86s
Total Load Time
6
HTTP Requests
3
Domains
298 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:59%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:59%
Script Type:Latin
Text Length:138 chars
Detector Agreement:100%

Website Classification

Primary Category

cryptocurrency blockchain80% confidence
Type: static
Method: ml+structural

All Detected Categories

cryptocurrency blockchain
80%
adult content
45%
news media journalism
42%
finance banking
40%
healthcare medical
37%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
6104.18.36.248United States
AS13335CLOUDFLARENET
0104.18.161.117United States
AS13335CLOUDFLARENET
013.226.247.67United States
AS16509AMAZON-02
0104.18.160.117United States
AS13335CLOUDFLARENET
013.226.247.129United States
AS16509AMAZON-02
013.226.247.220United States
AS16509AMAZON-02
02606:4700:440c::ac40:9708United States
AS13335CLOUDFLARENET
02606:4700::6812:a175United States
AS13335CLOUDFLARENET
013.226.247.18United States
AS16509AMAZON-02
0172.64.151.8United States
AS13335CLOUDFLARENET
612--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1FD511427F86EC4141232B5F0DB66705CCADEA24CCBC4CD45D5E1C84AB7DDBAA0462A8D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

48:icV8YSi/0/JS+P8YQcaLgnC4iGba2o8Y0C+u/iWOuR+68Y0Phe2vM8Y0PPt8Y0PK:Fp/0BjPxaLTr/cs+60e2vMwtog0roGBw

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:2496:CAAAAgECIAAACIAgQAQAAAAAAoAAJAAAAFgAEMgkBgACEAAEEAJGgAgAAAgAgYBAAAAAAABSABAAAAQABUAAARAAAIAIgCAA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffffffffc381ffff
Perceptual Hash:ed92926d92926d96
Difference Hash:0000000016160014
Wavelet Hash:00000000ff81ffff
Color Hash:#6ce0a4

Other Hashes

Crop Resistant:0000000016160014

Scan History

Scan history not available

Unable to load historical scan data