ScanMalware.com

Security Scan Report: ufamax24.shop

Redirected to: https://ufamax24.shop/wp-login.php?redirect_to=https%3A%2F%2Fufamax24.shop%2Fwp-admin%2F&reauth=1

Site favicon
Submitted: Nov 2, 2025, 11:05:32 PMCompleted: Nov 2, 2025, 11:06:02 PMpubliccompleted
Loading additional data...

Summary

This website contacted 9 IPs in 2 countries across 4 domains to perform 36 HTTP transactions. The main domain is ufamax24.shop and was registered NaN years ago.

Submitted URL: https://ufamax24.shop/wp-admin/

Effective URL: https://ufamax24.shop/wp-login.php?redirect_to=https%3A%2F%2Fufamax24.shop%2Fwp-admin%2F&reauth=1Redirected

AI Security Verdict

Confirmed Scam

Confidence: 96%

10
Risk Score

Confirmed phishing scam impersonating UFABET on a newly registered WordPress site.

Risk Factors
Brand impersonation (UFABET) on untrusted domain
Newly registered domain (<7 days)
Compromised WordPress URLs (wp-admin, wp-login.php)
Credential harvesting form
Unranked domain with low reputation
Domain age information unavailable

Details

Page Title

เข้าสู่ระบบ ‹ UFABET — WordPress

Scan Type

public

Language

🇹🇭

TH

(80% confidence)

Category

gambling betting

(49%)

Domain Information

The domain name 'ufamax24.shop' uses the commerce-oriented generic top-level domain (.shop). The core label 'ufamax24' covers 8 characters containing 3 vowels alongside 3 consonants; it also includes 2 digits. Breaking it apart gives 3 words: ufa, max, 24. Expect 3 characters per word on average. The linguistic tilt is Basque for 'ufa'. Usage also turns up in Polish and Portuguese contexts.

Screenshot

Security scan screenshot of https://ufamax24.shop/wp-admin/

Page Load Overview

5.46s
Total Load Time
36
HTTP Requests
4
Domains
1.2 MB
Total Size

Language Analysis

Primary Language

🇹🇭Thai
Code: th
Confidence:80%
Script:Unknown
Direction:ltr

Detection Details

Language Code:th
Detection Confidence:80%
Script Type:Unknown
HTML Lang Attribute:th
Text Length:212 chars
Detector Agreement:100%

Website Classification

Primary Category

gambling betting49% confidence
Type: spa
Method: ml+structural

All Detected Categories

gambling betting
49%
technology software
48%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
4172.67.174.155United States
AS13335CLOUDFLARENET
4142.250.185.131United States
AS15169GOOGLE
4216.58.206.35United States
AS15169GOOGLE
4104.21.31.8United States
AS13335CLOUDFLARENET
4142.250.185.227United States
AS15169GOOGLE
42606:4700:3033::6815:1f08United States
AS13335CLOUDFLARENET
42606:4700:3034::ac43:ae9bUnited States
AS13335CLOUDFLARENET
42a00:1450:4001:81d::2003Frankfurt am Main, Hesse, Germany
AS15169GOOGLE
42a00:1450:4001:804::2003Frankfurt am Main, Hesse, Germany
AS15169GOOGLE
369--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T17522B7E7AC3D0E1E0001F7E5E97EB54C10AFCE759715E4DAA7FB424E96A1A880D92F01

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:z84ls+80jlSEbS+QKEEEEVNuvV3Pj+OYO8o0F5hxgcnbHuhxgcOLf4WhRPRr6a9z:zFK+80LbSWEEEEVNu93Pj+OYO8o0FLtT

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:9991:ARRzfBBXBHDQOFOBhN4IY+sIBICoEBBB6TZIBCQJAhyMgRgGgA+oIkC6DB4bFQA03dDkRkWJD4IqheggBACoKPGmEEilkZOa

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:e7e7dbf7efffffff
Perceptual Hash:e626333366cccc99
Difference Hash:0808322418000000
Wavelet Hash:27273f3724343030
Color Hash:#4062bf

Other Hashes

Crop Resistant:0808322418000000

Scan History

Scan history not available

Unable to load historical scan data