ScanMalware.com

Security Scan Report: kuban.aif.ru

Submitted: Mar 26, 2026, 10:56:52 AMCompleted: Mar 26, 2026, 10:58:49 AMpubliccompleted
Loading additional data...

Summary

This website contacted 18 IPs in 3 countries across 23 domains to perform 1 HTTP transaction. The main domain is kuban.aif.ru and was registered NaN years ago.

Submitted URL: https://kuban.aif.ru

The Cisco Umbrella rank of the primary domain is #159,167 of the top 1 million websites

AI Security Verdict

Moderate Risk

Confidence: 78%

5
Risk Score

Site is a legitimate news outlet but is linked to a known malicious IP, warranting caution.

Risk Factors
Association with malicious IP address 5.255.255.77
Low Cisco Umbrella ranking for the domain
Safety Factors
Domain registered since 1997 – long‑standing presence
No credential‑harvesting or payment forms
No malicious JavaScript patterns or YARA matches
Meta tags do not claim to be a major brand
Content appears to be regional news (legitimate purpose)
Domain age information unavailable

Details

Page Title

АиФ Краснодар: новости и главные события в Краснодарском крае на | kuban.aif.ru

Scan Type

public

Language

🇷🇺

Russian

(80% confidence)

Category

forum

(40%)

Domain Information

Within the Russian country-code top-level domain (.ru), 'kuban.aif.ru' is registered; it also runs on subdomain 'kuban'. Its registrable label 'aif' stretches across 3 characters with two vowels and 1 consonant. Splitting it apart reveals two words: a, if. Median word length is 1.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://kuban.aif.ru

Page Load Overview

23.63s
Total Load Time
221
HTTP Requests
59
Domains
1.5 MB
Total Size

Language Analysis

Primary Language

🇷🇺Russian
Code: ru
Confidence:80%
Script:Cyrillic
Direction:ltr

Detection Details

Language Code:ru
Detection Confidence:80%
Script Type:Cyrillic
HTML Lang Attribute:ru
Text Length:11,689 chars
Detector Agreement:100%

Website Classification

Primary Category

forum40% confidence
Type: spa
Method: structural

All Detected Categories

forum
40%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1787.250.250.119Russia
AS13238YANDEX LLC
1237.9.64.225Russia
AS13238YANDEX LLC
1293.158.134.118Russia
AS13238YANDEX LLC
12158.160.39.250Moscow, Moscow, Russia
AS200350Yandex.Cloud LLC
12194.226.130.227Russia
AS52016JSC ADFACT
1287.250.251.93Russia
AS13238YANDEX LLC
12188.72.103.3Dubai, Dubai, United Arab Emirates
AS215013Yandex.Cloud LLC
1295.163.52.67Russia
AS47764LLC VK
125.255.255.77Russia
AS13238YANDEX LLC
1288.212.201.198Moscow, Moscow, Russia
AS39134Edinaya Set Limited Liability Company
22118--

Detected Technologies5

X-UA-Compatible
100%
DDoS-Guard
40%
Liveinternet
30%
jQuery
20%
Yandex.Metrika
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T124F3953194F464AB0312F0C2DD252B2EADE3803BEE865D0175BC5AD86FE2EA5CD1764D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:xPBQieC9nMIlwU6yp4+xw5uP8L/PnO0fPLhqktAm9rpr4B:ftw5uP8LnnXPLhltd2B

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:163984:RhKAwiBAiQplaIemXoAgWAEtQAm4ihEyFIiJLAEgc5iFCyKwiEIAKLVACDCYbIE0Yl41owDBxwUkEI1RgRIlyJAODZ0AQBii

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:81878383c7cfffff
Perceptual Hash:b32ecac12e2e71c9
Difference Hash:271e1f3e1e98d899
Wavelet Hash:8183818387c7efe7
Color Hash:#21931f

Other Hashes

Crop Resistant:271e1f3e1e98d899,20c043c94b4bd041,0000000000000000,cc4c8c8d8da4246d,f1f0cd95666366bf

Scan History

Scan history not available

Unable to load historical scan data