ScanMalware.com

Security Scan Report: j365t.xyz

Submitted: Apr 23, 2026, 3:10:18 PMCompleted: Apr 23, 2026, 3:13:06 PMpubliccompleted
Loading additional data...

Summary

This website contacted 10 IPs in 2 countries across 2 domains to perform 195 HTTP transactions. The main domain is j365t.xyz and was registered NaN years ago.

Submitted URL: https://j365t.xyz/casino.html?apiType=2&apiId=38&gameTag=ActivityGame

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

New unranked site with login forms that exfiltrate credentials, flagged by Google Safe Browsing as phishing – confirmed credential phishing scam.

Risk Factors
Brand new (<7 days) domain with credential forms
Unranked domain in Cisco Umbrella top 1M
Credential exfiltration via JavaScript
Anti‑analysis techniques (DevTools blocking)
Google Safe Browsing phishing detection
Domain age information unavailable

Details

Page Title

Welcome

Scan Type

public

Language

🇨🇳

Chinese

(60% confidence)

Category

entertainment media

(76%)

Domain Information

You're looking at domain 'j365t.xyz' on the open generic top-level domain (.xyz) and has no subdomain. The core label 'j365t' covers 5 characters containing zero vowels alongside two consonants, along with 3 digits. Segmentation suggests 3 words: j, 365, t. Median word length is one character. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://j365t.xyz/casino.html?apiType=2&apiId=38&gameTag=ActivityGame

Page Load Overview

90.16s
Total Load Time
195
HTTP Requests
2
Domains
4.5 MB
Total Size

Language Analysis

Primary Language

🇨🇳Chinese
Code: zh
Confidence:60%
Script:Han
Direction:ltr

Detection Details

Language Code:zh
Detection Confidence:60%
Script Type:Han
HTML Lang Attribute:zh-CN
Text Length:5,557 chars
Detector Agreement:50%

Website Classification

Primary Category

entertainment media76% confidence
Type: webapp
Method: ml+structural

All Detected Categories

entertainment media
76%
gambling betting
62%
adult content
31%
social_media
25%
forum
20%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
24211.93.211.158China
AS4837CHINA UNICOM China169 Backbone
19154.39.104.142Hong Kong, Hong Kong
AS140224Nebula Global LLC
19154.39.104.140Hong Kong, Hong Kong
AS140224Nebula Global LLC
19101.71.88.61China
AS4837CHINA UNICOM China169 Backbone
19154.39.104.130Hong Kong, Hong Kong
AS140224Nebula Global LLC
19116.131.57.65China
AS4837CHINA UNICOM China169 Backbone
19154.39.104.128Hong Kong, Hong Kong
AS140224Nebula Global LLC
19175.43.192.174China
AS4837CHINA UNICOM China169 Backbone
19154.39.104.144Hong Kong, Hong Kong
AS140224Nebula Global LLC
19154.39.104.132Hong Kong, Hong Kong
AS140224Nebula Global LLC
19510--

Detected Technologies1

PasswordField
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T10B44562A7441A83741A310D36636776CB1E2E73DDE155AE07AFC26B1BBF1FB124124AC

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

6144:vOXMXIC9SskerWPoYZfSpg55qI+sxuYRm47d+IRs0akBPf4xHyZvtnWMH82JGk4r:q1WCryP9

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:260408:gRICHBAKCBQVqiLhBUDDAgLwwCoARLLwBbF8AlyJNG5ZEAjDgAAb5yCFCE4jQIBUjEAgEBKgwAMlABg0NBIgClxBQkkMjC0M

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Scan History

Scan history not available

Unable to load historical scan data