ScanMalware.com

Security Scan Report: chusa.store

Redirected to: https://chusa.store/signin?redirect=%252F

Submitted: Nov 10, 2025, 10:07:51 PMCompleted: Nov 10, 2025, 10:08:38 PMpubliccompleted
Loading additional data...

Summary

This website contacted 7 IPs in 0 countries across 2 domains to perform 24 HTTP transactions. The main domain is chusa.store and was registered NaN years ago.

Submitted URL: http://chusa.store/

Effective URL: https://chusa.store/signin?redirect=%252FRedirected

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

Confirmed phishing site impersonating n8n.io with a login form on a brand‑new, unranked domain.

Risk Factors
Brand impersonation on a newly registered domain
Credential‑harvesting login form on a domain less than 7 days old
Unranked, low‑reputation domain
Mismatch between page title/branding and actual domain
Domain age information unavailable

Details

Page Title

n8n.io - Workflow Automation

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(80%)

Domain Information

You're looking at domain 'chusa.store' on the .store top-level domain and has no subdomain. Count 5 characters in 'chusa' with two vowels and 3 consonants. Breaking it apart gives 2 words: ch, usa. Median word length is 2.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://chusa.store/

Page Load Overview

13.13s
Total Load Time
24
HTTP Requests
2
Domains
345 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:431 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software80% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

technology software
80%
documentation technical
40%
cryptocurrency blockchain
32%
government public service
32%
social media network
26%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
345.139.29.134UnknownUnknown
3104.26.13.187UnknownUnknown
3104.26.12.187UnknownUnknown
32606:4700:20::ac43:4466UnknownUnknown
32606:4700:20::681a:cbbUnknownUnknown
32606:4700:20::681a:dbbUnknownUnknown
3172.67.68.102UnknownUnknown
247--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T12D53B632F409242F230784BE55A0D95A33ADA512FB1B4F69FF90D2D57E8A46B90F7E10

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:rYOaBciawHMlnrvsWaEAQAUQp03wEWMMstHQycz8HPWFp0/WgfsbCNwSEf6pzrAV:MOv7w4PNkc9VA1Jo7XoL

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:65476:ClJCCLCAAYCwQCWGtBaSJa2qQkiQxAP9MhIrilCCYAAIEFAAHgCVZsHAQmXgAAhFg84QQK1AABSwRBDAMQMAQKMKCGkMImlS

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:e7ffe7e7ffffffff
Perceptual Hash:b33389cc66663399
Difference Hash:0810080810000000
Wavelet Hash:040c0c04f0f0f0f0
Color Hash:#86372d

Other Hashes

Crop Resistant:0810080810000000

Scan History

Scan history not available

Unable to load historical scan data