ScanMalware.com

Security Scan Report: stayupsubs.store

Submitted: Mar 16, 2026, 4:21:16 AMCompleted: Mar 16, 2026, 4:22:26 AMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 2 countries across 3 domains to perform 9 HTTP transactions. The main domain is stayupsubs.store and was registered NaN years ago.

Submitted URL: https://stayupsubs.store/checkout?product=Instagram_SMM

AI Security Verdict

Confirmed Scam

Confidence: 95%

9
Risk Score

Impersonates Instagram on a brand‑new unranked domain; likely a fraudulent checkout – avoid and report.

Risk Factors
Brand impersonation (Instagram) on an unranked, brand‑new domain
Domain age less than 7 days (critical risk)
Suspicious checkout flow without clear payment fields
Unranked domain (not in Cisco Umbrella top 1M) used to mimic a major brand
Domain age information unavailable

Details

Page Title

إتمام الطلب | STAYUPSUBS

Scan Type

public

Language

🇸🇦

Arabic

(80% confidence)

Category

social media network

(98%)

Domain Information

Domain 'stayupsubs.store' uses the .store top-level domain while skipping any subdomain. The second-level label 'stayupsubs' is 10 characters long with three vowels and 7 consonants. Tokenizing the label suggests 3 words: stay, up, subs. Median word length is 4 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://stayupsubs.store/checkout?product=Instagram_SMM

Page Load Overview

0.36s
Total Load Time
9
HTTP Requests
3
Domains
53 KB
Total Size

Language Analysis

Primary Language

🇸🇦Arabic
Code: ar
Confidence:80%
Script:Arabic
Direction:rtl

Detection Details

Language Code:ar
Detection Confidence:80%
Script Type:Arabic
HTML Lang Attribute:ar
Text Length:1,096 chars
Detector Agreement:100%

Website Classification

Primary Category

social media network98% confidence
Type: static
Method: ml+structural

All Detected Categories

social media network
98%
e-commerce shopping
74%
cryptocurrency blockchain
52%
technology software
45%
entertainment media
43%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
335.157.26.135Frankfurt am Main, Hesse, Germany
AS16509Amazon.com, Inc.
263.176.8.218Frankfurt am Main, Hesse, Germany
AS16509Amazon.com, Inc.
2142.250.201.74United States
AS15169Google LLC
2172.217.20.131United States
AS15169Google LLC
94--

Detected Technologies2

Netlify
40%
HSTS
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1537255285066841155C78AEBB2EB5111D8B8B603DA06DED8F83C47E1DFDE8BBC737528

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:gpW3zF5gbFryRxunfdRq+lk6cqnCKJI86xAgKEPHgQR1i7iTk61OYoETsY0hc433:TFYFh8F86eFLwi7iY6I1mEC6t

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:16795:BQJpaQnaFARAgJ6CFEcgI0BQSHADMqQCEM5kGEJATVxJ1iA4AEvAVAlTGBMAVMgsrCgBMoGkhQQEFlISpSEaiABEOWmMwGaB

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0119391919091919
Perceptual Hash:8acd2223ef67229b
Difference Hash:8331317131393179
Wavelet Hash:41393d3d3d19193d
Color Hash:#3a786f

Other Hashes

Crop Resistant:8331313131393179

Scan History

Scan history not available

Unable to load historical scan data