Security Scan Report: bola1131.sbs

Site favicon
Submitted: Oct 19, 2025, 6:41:09 AMCompleted: Oct 19, 2025, 6:42:10 AMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 1 country across 1 domain to perform 13 HTTP transactions. The main domain is bola1131.sbs and was registered NaN years ago.

Submitted URL: https://bola1131.sbs/wp-login.php?redirect_to=https%3A%2F%2Fbola1131.sbs%2Fwp-admin%2F&reauth=1

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

Confirmed phishing scam; avoid interaction

Risk Factors
Domain registered within 7 days with a credential harvesting form
Password field without username indicates credential harvesting
Newly created WordPress login page likely used for phishing
Domain age information unavailable

Details

Page Title

Log Masuk ‹ BOLA1131 Deposit QRIS Express, Bermain Game Online Tanpa Ribet — WordPress

Scan Type

public

Language

🇮🇩

ID

(80% confidence)

Category

gambling betting

(58%)

Domain Information

Within the .sbs top-level domain, 'bola1131.sbs' is registered without a subdomain. Count 8 characters in 'bola1131' holding 2 vowels versus two consonants, along with four digits. Splitting it apart reveals two words: bola, 1131. The median word length lands at 4 characters. Most frequently, 'bola' shows up in Slovak. Usage also turns up in Indonesian and Malay contexts.

Screenshot

Security scan screenshot of https://bola1131.sbs/wp-login.php?redirect_to=https%3A%2F%2Fbola1131.sbs%2Fwp-admin%2F&reauth=1

Page Load Overview

37.93s
Total Load Time
13
HTTP Requests
1
Domains
404 KB
Total Size

Language Analysis

Primary Language

🇮🇩Indonesian
Code: id
Confidence:80%
Script:Unknown
Direction:ltr

Detection Details

Language Code:id
Detection Confidence:80%
Script Type:Unknown
HTML Lang Attribute:id
Text Length:325 chars
Detector Agreement:100%

Website Classification

Primary Category

gambling betting58% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

gambling betting
58%
entertainment media
56%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
4104.21.41.86United States
AS13335CLOUDFLARENET
3172.67.163.68United States
AS13335CLOUDFLARENET
32606:4700:3033::6815:2956United States
AS13335CLOUDFLARENET
32606:4700:3033::ac43:a344United States
AS13335CLOUDFLARENET
134--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1D012B5622C5D8D12820247D975E9A548A06FD1319326CC4EB3FB8A5D3BA2EDC2E6374D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:AYx7ZNDIYy0bAOEr5ikeSxgc86Fc+Oe5eSxgcSKHueSxgcpEJUb:TxZN0Y3bAOEr5io26Fc+OeT4KHSDEJUb

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:9807:GtHNEDgBMKwAxoCoJBsBgMCAcM4oosAQXegAAA4BExNEYrpj4IZipBhSEph4JLM40BU3CEzAAiQAmxUwAmBYQYYDUQGSEkSA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:e7e7dbf7e7ffffff
Perceptual Hash:e666933366cc8c99
Difference Hash:0808302448000000
Wavelet Hash:e0e0fcf4e0e0f0f0
Color Hash:#2d8646

Other Hashes

Crop Resistant:0808302448000000

Scan History

Scan history not available

Unable to load historical scan data