ScanMalware.com

Security Scan Report: www.cuba.travel

Site favicon
Submitted: May 2, 2026, 1:43:01 AMCompleted: May 2, 2026, 1:44:38 AMpubliccompleted
Loading additional data...

Summary

This website contacted 11 IPs in 3 countries across 11 domains to perform 117 HTTP transactions. The main domain is cuba.travel and was registered NaN years ago.

Submitted URL: https://www.cuba.travel/en/

AI Security Verdict

Moderate Risk

Confidence: 78%

5
Risk Score

The site shows moderate risk due to hidden password fields and Unicode evasion, indicating possible credential harvesting despite its legitimate‑looking branding and long domain age.

Risk Factors
Disguised password fields
Unicode evasion in form inputs
Password‑only fields (credential harvesting pattern)
Unranked domain despite old age
Safety Factors
Domain age > 8 years (3214 days)
Meta tags and brand name match the domain (self‑branding)
No Indicators of Compromise matched
No JavaScript malware or IDS alerts detected
No cross‑origin credential exfiltration
Domain age information unavailable

Details

Page Title

Cuba Travel | Tourism Portal

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

corporate

(50%)

Domain Information

The domain name 'www.cuba.travel' uses the .travel top-level domain; it also runs on subdomain 'www'. The second-level label 'cuba' is 4 characters long with two vowels and 2 consonants. Word splitting yields 1 word: cuba. Median word length comes out to 4 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.cuba.travel/en/

Page Load Overview

9.44s
Total Load Time
168
HTTP Requests
28
Domains
6.1 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-GB
Text Length:10,713 chars
Detector Agreement:100%

Website Classification

Primary Category

corporate50% confidence
Type: spa
Method: structural

All Detected Categories

corporate
50%
forum
40%

Detected Features

Search
OG: website
Schema.org

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
18192.178.183.94United States
AS15169Google LLC
1513.226.247.134United States
AS16509Amazon.com, Inc.
15142.251.110.94United States
AS15169Google LLC
1534.250.112.208Dublin, Leinster, Ireland
AS16509Amazon.com, Inc.
15142.251.14.113United States
AS15169Google LLC
15142.251.153.119United States
AS15169Google LLC
15142.251.14.97United States
AS15169Google LLC
15185.15.59.240United States
AS14907Wikimedia Foundation Inc.
15142.251.127.95United States
AS15169Google LLC
15142.250.154.95United States
AS15169Google LLC
16811--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1CC7475608CC06BB352275AD1B2B16B8E7753D61E8CC3141ABD9D6F4A0BEBC31E9CD584

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:db3bTi5/DiNjrGfBGBu1L1o1U3KK/RH3DopbmMh/A7O:FbXNjr+4Bu1L1o1U3KK/RH3Dop60/v

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:343676:kBJbIOhUCMKAwMRC7kQoSSLmR+tESCQQIJhYiBAUkOQgAE4YAVoAADQCvWW2+mNiUEBAgAAgEiAltsjYiJCAwNEZjNyRELpE

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Scan History

Scan history not available

Unable to load historical scan data