ScanMalware.com

Security Scan Report: app.busybees.com

Redirected to:
https://app.busybees.com/#/login
Site favicon
Submitted: May 13, 2026, 2:46:26 AMCompleted: May 13, 2026, 2:48:39 AMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 2 countries across 3 domains to perform 28 HTTP transactions. The main domain is app.busybees.com and was registered NaN years ago.

Submitted URL: https://app.busybees.com

Effective URL: https://app.busybees.com/#/loginRedirected

The Cisco Umbrella rank of the primary domain is #565,165 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 88%

7
Risk Score

The site hosts a login form and exhibits critical malware‑related IDS alerts, indicating a high‑risk credential phishing operation despite its long domain age.

Risk Factors
Critical IDS alerts indicating malware and C2 activity
Credential collection form on a low‑ranked domain
Highly obfuscated JavaScript
Domain rank far below typical legitimate brand domains
Domain age information unavailable

Details

Page Title

Busy Bees

Scan Type

public

Language

🇺🇸

English

(59% confidence)

Category

documentation technical

(35%)

Domain Information

The domain name 'app.busybees.com' uses the commercial generic top-level domain (.com), featuring subdomain 'app'. Its registrable label 'busybees' stretches across 8 characters containing three vowels alongside 5 consonants. Segmentation suggests two words: busy, bees. Median word length comes out to four characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://app.busybees.com

Page Load Overview

2.49s
Total Load Time
12
HTTP Requests
4
Domains
368 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:59%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:59%
Script Type:Latin
Text Length:401 chars
Detector Agreement:100%

Website Classification

Primary Category

documentation technical35% confidence
Type: webapp
Method: ml+structural

All Detected Categories

documentation technical
35%
technology software
30%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
413.226.244.60United States
AS16509Amazon.com, Inc.
465.9.175.4United States
AS16509Amazon.com, Inc.
4185.56.128.163Germany
AS25291SysEleven GmbH
123--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1A7321EF74115141E1B225BCC36613A0CEA37825EFECE9CA4F57CA98A9F84EF2A418355

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:qmlWGuzc9jdm4mOqxn+6j5FCiUPsYKE4QvtzacoODmWWwYyrJetWUz1Jo5b5PqUn:qbGuzc9jdt+xn+6j5FCiUPsbExacoLLM

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:11138:gEQAPG4cFAmUaBUoegDguRRCsg0EwwAEEUcNCljD5inKQSegAXCaaUgvlISUCgTAdwAAsIQnkACJADjcOEISKoQIULQEwSMp

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:f9fdd8f8f8d8f0f8
Perceptual Hash:cdb2eb4d97483c14
Difference Hash:0301313032320210
Wavelet Hash:f8f8d0f0f890f0f0
Color Hash:#2dd272

Other Hashes

Crop Resistant:0301313032320210,b2ba9812b0c4de5a,c3cba9686052d3d0

Scan History

Scan history not available

Unable to load historical scan data