ScanMalware.com

Security Scan Report: rubbitqqjsix.icu

Redirected to: https://rubbitqqjsix.icu/#/pages/login/login

Submitted: Nov 22, 2025, 3:54:06 AMCompleted: Nov 22, 2025, 3:56:21 AMpubliccompleted
Loading additional data...

Summary

This website contacted 16 IPs in 4 countries across 5 domains to perform 90 HTTP transactions. The main domain is rubbitqqjsix.icu and was registered NaN years ago.

Submitted URL: https://rubbitqqjsix.icu/

Effective URL: https://rubbitqqjsix.icu/#/pages/login/loginRedirected

AI Security Verdict

High Risk

Confidence: 78%

7
Risk Score

High‑risk phishing site; likely credential harvesting

Risk Factors
Circular redirect (strong phishing technique)
Very new domain (<7 days) increases likelihood of scam
Login‑oriented page without visible forms may hide malicious scripts
Unranked domain with no reputation
Domain age information unavailable

Details

Page Title

登录

Scan Type

public

Language

🇨🇳

Chinese

(60% confidence)

Category

unknown

(0%)

Domain Information

The domain 'rubbitqqjsix.icu' uses the .icu top-level domain and has no subdomain. Its registrable label 'rubbitqqjsix' stretches across 12 characters with three vowels and 9 consonants. Word splitting yields 5 words: rub, bit, qq, j, six. Expect three characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://rubbitqqjsix.icu/

Page Load Overview

3.84s
Total Load Time
90
HTTP Requests
5
Domains
262 KB
Total Size

Language Analysis

Primary Language

🇨🇳Chinese
Code: zh
Confidence:60%
Script:Han
Direction:ltr

Detection Details

Language Code:zh
Detection Confidence:60%
Script Type:Han
HTML Lang Attribute:zh-CN
Text Length:92 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: dynamic
Method: structural

All Detected Categories

No categories detected

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
7834.92.224.0Hong Kong, Hong Kong
AS396982GOOGLE-CLOUD-PLATFORM
5124.220.205.65Shanghai, Shanghai, China
AS45090Shenzhen Tencent Computer Systems Company Limited
5163.181.92.198Frankfurt am Main, Hesse, Germany
AS24429Zhejiang Taobao Network Co.,Ltd
52408:4005:30a:4302:6218:d8d9:db29:5dd2Hangzhou, Zhejiang, China
AS37963Hangzhou Alibaba Advertising Co.,Ltd.
5124.220.203.60Shanghai, Shanghai, China
AS45090Shenzhen Tencent Computer Systems Company Limited
5106.54.228.253Shanghai, Shanghai, China
AS45090Shenzhen Tencent Computer Systems Company Limited
52408:4005:30a:4302:6218:d8d9:db29:5dd6Hangzhou, Zhejiang, China
AS37963Hangzhou Alibaba Advertising Co.,Ltd.
5124.222.174.117Shanghai, Shanghai, China
AS45090Shenzhen Tencent Computer Systems Company Limited
5111.231.169.247Shanghai, Shanghai, China
AS45090Shenzhen Tencent Computer Systems Company Limited
52408:4005:30a:4302:6218:d8d9:db29:5dd8Hangzhou, Zhejiang, China
AS37963Hangzhou Alibaba Advertising Co.,Ltd.
9016--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T10533853275092634D237DE5578956B1A7215F233C20349ECB3DD262E8FC79DB2DA1B88

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:fdZXEn5wWP5iuQcGtL4D+ubX0ISkkYKTzhBeC3D:fdZXEnBeqsTzhBeC3D

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:53463:yDcAEgPIIBOktQgmM4ZQEJdFFAhRDAg+QEX8hEgEQkQAEQxREAYsUWeIprQogwKBDMhQggLABRNvACRFUDUmSGtBTCQFwSAv

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffffffffffffffc2
Perceptual Hash:f58a758a758a20de
Difference Hash:0000001016160096
Wavelet Hash:fcfcfcc0c0c0fcc0
Color Hash:#9ad279

Other Hashes

Crop Resistant:0000001016160096,4100081010101010

Scan History

Scan history not available

Unable to load historical scan data