ScanMalware.com

Security Scan Report: www.yghainan.com

Submitted: Dec 5, 2025, 1:58:06 AMCompleted: Dec 5, 2025, 1:58:58 AMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 1 country across 1 domain to perform 3 HTTP transactions. The main domain is yghainan.com and was registered NaN years ago.

Submitted URL: https://www.yghainan.com/?token=jDtT92yUigzULwyT9gza1gCKn3zLHwBa

AI Security Verdict

Moderate Risk

Confidence: 72%

3
Risk Score

Site contains a hidden password field on an unranked domain; likely phishing, avoid entering credentials.

Risk Factors
Hidden password field collecting credentials
Unranked domain hosting a login form
Safety Factors
Domain age is over 10 years (well‑established)
No known malicious Indicators of Compromise
No payment or personal identification fields
Domain age information unavailable

Details

Page Title

N/A

Scan Type

public

Language

🇨🇳

Chinese

(60% confidence)

Category

malicious

(25%)

Domain Information

You're looking at domain 'www.yghainan.com' on the commercial generic top-level domain (.com); it also runs on subdomain 'www'. Count 8 characters in 'yghainan' split between three vowels and 5 consonants. Segmentation suggests two words: yg, hainan. Median word length comes out to 4 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.yghainan.com/?token=jDtT92yUigzULwyT9gza1gCKn3zLHwBa

Page Load Overview

0.64s
Total Load Time
3
HTTP Requests
1
Domains
N/A
Total Size

Language Analysis

Primary Language

🇨🇳Chinese
Code: zh
Confidence:60%
Script:Han
Direction:ltr

Detection Details

Language Code:zh
Detection Confidence:60%
Script Type:Han
HTML Lang Attribute:zh-CN
Text Length:178 chars
Detector Agreement:100%

Website Classification

Primary Category

malicious25% confidence
Type: webapp
Method: ml+structural

All Detected Categories

malicious
25%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
3188.114.97.3United States
AS13335CLOUDFLARENET
3188.114.96.3United States
AS13335CLOUDFLARENET
02a06:98c1:3121::3United States
AS13335CLOUDFLARENET
02a06:98c1:3120::3United States
AS13335CLOUDFLARENET
34--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1AE22024A59F30492B817D0BD6BFA570536688013C80ECD143F9C679C9F9A991ABB3BCD

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:5r6Aafd1kGfoI+j+pRJKUc3FcFoi+QCBQ:tUc3K

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:10602:glCCRwY5RnIiOAgvACDWBYgAA1fjQgAE6ANEKGNsUIuZoI8A0eCyNTkCAMNBxqQAQAAg5CUIhAutgIwkcowkpnAIVCBCoAsB

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:030707070f070707
Perceptual Hash:a9a9ce1ca156b9a3
Difference Hash:ffbf9f9b9b1f2fef
Wavelet Hash:0f0f0f0f0f07073f
Color Hash:#64d22d

Other Hashes

Crop Resistant:ffbf9f9b9b1f2fef,da962468d9b26446,ffef8f86a60f1a9b

Scan History

Scan history not available

Unable to load historical scan data