ScanMalware.com

Security Scan Report: bento123ndxhealth.xyz

Site favicon
Submitted: Jan 5, 2026, 4:12:25 AMCompleted: Jan 5, 2026, 4:13:46 AMpubliccompleted
Loading additional data...

Summary

This website contacted 7 IPs in 2 countries across 6 domains to perform 273 HTTP transactions. The main domain is bento123ndxhealth.xyz and was registered NaN years ago.

Submitted URL: https://bento123ndxhealth.xyz/desktop/game/esports/tfgaming

AI Security Verdict

High Risk

Confidence: 92%

10
Risk Score

High risk phishing site; do not enter credentials.

Risk Factors
Very new domain (<30 days) collecting credentials
Password field on an untrusted, unranked domain
Hidden password field suggests credential harvesting
Domain age information unavailable

Details

Page Title

BENTO123 # Situs Slot Online Dengan Bonus Promosi Paling Menguntungkan 2025.

Scan Type

public

Language

🇮🇩

ID

(80% confidence)

Category

gambling betting

(77%)

Domain Information

The domain name 'bento123ndxhealth.xyz' uses the open generic top-level domain (.xyz) and has no subdomain. The core label 'bento123ndxhealth' covers 17 characters with four vowels and ten consonants, along with 3 digits. Segmentation suggests five words: bento, 123, nd, x, health. The median word length lands at three characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://bento123ndxhealth.xyz/desktop/game/esports/tfgaming

Page Load Overview

8.13s
Total Load Time
202
HTTP Requests
7
Domains
381 KB
Total Size

Language Analysis

Primary Language

🇮🇩Indonesian
Code: id
Confidence:80%
Script:Unknown
Direction:ltr

Detection Details

Language Code:id
Detection Confidence:80%
Script Type:Unknown
HTML Lang Attribute:id
Text Length:3,001 chars
Detector Agreement:80%

Website Classification

Primary Category

gambling betting77% confidence
Type: webapp
Method: ml+structural

All Detected Categories

gambling betting
77%
entertainment media
65%
social media network
48%
technology software
39%
adult content
37%

Detected Features

Login Form
OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
342.21.239.210Germany
AS20940
2895.100.110.26Germany
AS16509
28188.114.97.3United States
AS13335CLOUDFLARENET
2865.8.102.94GermanyUnknown
28188.114.96.3United States
AS13335CLOUDFLARENET
2823.50.131.150Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
282.21.239.206Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
2027--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T10ED3DC2358E13022127394F579A47E0BEEC5A603C21A4E44F1ED07B99FE7F569C137AA

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:xrCZdOTXOYBtZ+gDTBCsXcsQfpNYvpYLCsagvVknjJxIeb10/SBsauh3Z:ZCZdOTXOYBtZbDTB3QfgpK0jcauhp

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:133022:gMpDZRJCAAM70ArgjkWRkFtUGagQBaUBjUwDYAoBoCDVacAyA3VhQ2ODIAgAYweyIgIMZ6VBiALUh0okhEAH5vB1wVQLACE3

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:2438ff7d00093901
Perceptual Hash:8ad4237766a2f938
Difference Hash:4d71b1a1b171634b
Wavelet Hash:343dff7f08093d01
Color Hash:#783a3d

Other Hashes

Crop Resistant:954539b905c1d955,9e99a1d0d8d8d4e5,4d70b1a1b173634b

Scan History

Scan history not available

Unable to load historical scan data