ScanMalware.com

Security Scan Report: llg-whatsapp.com.cn

Submitted: Jan 9, 2026, 6:37:01 AMCompleted: Jan 9, 2026, 6:38:40 AMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 2 countries across 6 domains to perform 86 HTTP transactions. The main domain is llg-whatsapp.com.cn and was registered NaN years ago.

Submitted URL: https://llg-whatsapp.com.cn/

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

New, unranked site impersonating WhatsApp – confirmed scam, do not use.

Risk Factors
Critical new domain age
Brand impersonation of a well‑known service
Unranked domain with low reputation
Lack of legitimate content or functionality
Domain age information unavailable

Details

Page Title

WhatsApp Web

Scan Type

public

Language

🇨🇳

Chinese

(60% confidence)

Category

social media network

(65%)

Domain Information

Domain 'llg-whatsapp.com.cn' uses the Chinese country-code top-level domain (.com.cn) and has no subdomain. The second-level label 'llg-whatsapp' is 12 characters long containing 2 vowels alongside 9 consonants, notching one hyphen. Splitting it apart reveals five words: ll, g, what, s, app. The median word length lands at 2 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://llg-whatsapp.com.cn/

Page Load Overview

17.55s
Total Load Time
81
HTTP Requests
6
Domains
100 KB
Total Size

Language Analysis

Primary Language

🇨🇳Chinese
Code: zh
Confidence:60%
Script:Han
Direction:ltr

Detection Details

Language Code:zh
Detection Confidence:60%
Script Type:Han
HTML Lang Attribute:zh-CN
Text Length:271 chars
Detector Agreement:67%

Website Classification

Primary Category

social media network65% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

social media network
65%
corporate
25%

Detected Features

OG: website
Schema.org

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
17104.17.25.14United States
AS13335CLOUDFLARENET
16172.67.153.77United States
AS137951
16104.26.2.143United States
AS13335CLOUDFLARENET
16151.101.130.137United States
AS54113FASTLY
16154.221.8.131Seychelles
AS137951ASLINE LIMITED
815--

Detected Technologies10

Open-Graph-Protocolvwebsite
100%
JQueryv3.5.1
100%
Bootstrapv3.3.7
100%
Cloudflare
50%
HTTP/3
40%
HSTS
40%
Tailwind CSS
30%
jQuery CDN
20%
cdnjs
20%
Lodash
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T105F24CF66BB061F8AC03C7D6D971F118715B30FAFB25CA94E6C84964EBC259C8CC6894

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:nIpvpvTDoEhUbhnjG4dYt4adHxT+Qi7/EpGvZKTdX7aDK0:n2vTDoEhKhjRWdHs7/EpWwJX7ah

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:37396:k7JBHJCRgiQBaIDSVAAeU4VuBEQo7KGzGggwQgsIAgwg8ALqGFQ5IDgwgBqKFCQIgRgRpBcIyCJdCxqhMgaIcpAgpSEAHCwy

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:003c5a5a3e3c0000
Perceptual Hash:8c9833c7ce6d9998
Difference Hash:8250943661690200
Wavelet Hash:0cbc1c1cbdbdc0c0
Color Hash:#79c8d2

Other Hashes

Crop Resistant:8250943661690200

Scan History

Scan history not available

Unable to load historical scan data