ScanMalware.com

Security Scan Report: im3upgrade.ioh.co.id

Submitted: Apr 17, 2026, 3:51:34 AMCompleted: Apr 17, 2026, 3:53:18 AMpubliccompleted
Loading additional data...

Summary

This website contacted 7 IPs in 4 countries across 7 domains to perform 1 HTTP transaction. The main domain is im3upgrade.ioh.co.id and was registered NaN years ago.

Submitted URL: https://im3upgrade.ioh.co.id

The Cisco Umbrella rank of the primary domain is #30,996 of the top 1 million websites

AI Security Verdict

Low Risk

Confidence: 82%

3
Risk Score

Low risk site with no malicious indicators; likely legitimate but monitor for possible brand impersonation.

Risk Factors
Brand name "IM3" appears on a subdomain (im3upgrade.ioh.co.id) without clear official affiliation
Safety Factors
Long domain age (>4 years)
Top 100K reputation ranking
Absence of malicious IoC, YARA, or IDS alerts
No credential or payment collection mechanisms
Domain age information unavailable

Details

Page Title

Migrasi Platinum

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

entertainment media

(96%)

Domain Information

Within the Indonesian country-code top-level domain (.co.id), 'im3upgrade.ioh.co.id' is registered with subdomain 'im3upgrade'. The second-level label 'ioh' is 3 characters long holding 2 vowels versus 1 consonant. Segmentation suggests 2 words: i, oh. Median word length comes out to 1.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://im3upgrade.ioh.co.id

Page Load Overview

5.59s
Total Load Time
36
HTTP Requests
8
Domains
403 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:2,921 chars
Detector Agreement:50%

Website Classification

Primary Category

entertainment media96% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

entertainment media
96%
government public service
82%
cryptocurrency blockchain
81%
technology software
80%
adult content
80%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
6172.67.71.97United States
AS15169
557.144.110.128Warsaw, Mazovia, Poland
AS32934Facebook, Inc.
5142.251.14.97United States
AS15169Google LLC
5142.251.127.84United States
AS15169Google LLC
534.36.107.201UnknownUnknown
523.36.162.7Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
5114.7.94.108Indonesia
AS4761INDOSAT Internet Network Provider
367--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T13913F9743191723591174BF0B17AB279B06BA21BEF63DD98C7E85EB0ABC1C9D4C434A8

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:m2egXsRBkXjiGzM3+//rn/3zcun5zPkdgmgweFw9E6J90:m2egXsF+8PxgweFw9E6J90

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:41798:sMSYQH3AYAEA4QgOOTCSaMADaM2zFBcQgojkUQgFEO4ASSJCNAk0s0AhgjHELiFSVIACQg0SKGELuZl8gJAQAEEUGWBAJvGQ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:1810181818181818
Perceptual Hash:8877329b9999cccc
Difference Hash:b3b3b3b3b3b3b3b3
Wavelet Hash:3939393939393939
Color Hash:#ac537d

Other Hashes

Crop Resistant:80d0c08727170392,cbcbcbcbcbc3e8c7,d8d2da3e6e3e8e55,b3b3b3b3b3b3b3b3

Scan History

Scan history not available

Unable to load historical scan data