ScanMalware.com

Security Scan Report: kulas.allidity.info

Redirected to: https://kulas.allidity.info/[email protected]

Submitted: Apr 18, 2026, 12:51:56 PMCompleted: Apr 18, 2026, 12:53:18 PMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 2 countries across 3 domains to perform 10 HTTP transactions. The main domain is kulas.allidity.info and was registered NaN years ago.

Submitted URL: http://kulas.allidity.info/redirect.html/?f=b2Q9MXN5aTY5ZGQ0YzFiNTU5ODB0MHRfb3V0dmxfQWN0aXZlOQ%3D%3D&n=OXZoYTJn&w=QTJuOWNyZngyaDQydDVsMDRnX3g0MTU5Nw%3D%3D&o=ZngyaDQ%3D&t=&g=&u=X3g0&x=&i=ZngyaDQ%3D&b=ZngyaDQ%3D&z=X3g0&m=X3g0&e=M3YzbXEtMmw4NWlyMg==4q5Nfe

Effective URL: https://kulas.allidity.info/[email protected]Redirected

AI Security Verdict

High Risk

Confidence: 85%

8
Risk Score

The site shows a phishing redirect alert, is unranked and newly registered, and collects email via a form, indicating a high‑risk credential phishing attempt.

Risk Factors
Unranked domain reputation
New domain (<90 days) with multiplier
Phishing‑related IDS alert
Email collection form without clear legitimate purpose
Obfuscated URL parameters (base64 strings)
Domain age information unavailable

Details

Page Title

Unsubscribe

Scan Type

public

Language

🇺🇸

English

(55% confidence)

Category

adult content

(60%)

Domain Information

Within the informational generic top-level domain (.info), 'kulas.allidity.info' is registered; it also runs on subdomain 'kulas'. Its registrable label 'allidity' stretches across 8 characters with three vowels and 5 consonants. Tokenizing the label suggests 3 words: all, idi, ty. Median word length is three characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://kulas.allidity.info/redirect.html/?f=b2Q9MXN5aTY5ZGQ0YzFiNTU5ODB0MHRfb3V0dmxfQWN0aXZlOQ%3D%3D&amp;n=OXZoYTJn&amp;w=QTJuOWNyZngyaDQydDVsMDRnX3g0MTU5Nw%3D%3D&amp;o=ZngyaDQ%3D&amp;t=&amp;g=&amp;u=X3g0&amp;x=&amp;i=ZngyaDQ%3D&amp;b=ZngyaDQ%3D&amp;z=X3g0&amp;m=X3g0&amp;e=M3YzbXEtMmw4NWlyMg==4q5Nfe

Page Load Overview

1.44s
Total Load Time
10
HTTP Requests
3
Domains
94 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:55%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:55%
Script Type:Latin
Text Length:207 chars
Detector Agreement:100%

Website Classification

Primary Category

adult content60% confidence
Type: static
Method: ml+structural

All Detected Categories

adult content
60%
news media journalism
30%
entertainment media
27%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
4172.217.16.170United States
AS15169Google LLC
357.131.7.205Italy
AS16276OVH SAS
3142.251.20.94United States
AS15169Google LLC
103--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T15C41980544F225721083A0A2BFE22D169ED1E947961B140435FC4BEE2FE7E9BCC836AD

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

24:koowahgwS+2vLjihuZCXXDYPKPX0jxTxZj:bG2fuAIDNPkjx3

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:1935:AAwgAAAIgEIAEIoAAQAARAAAACAAAUCACAAEoEAIANAIAAAAAAACgAEAACACAAIgAAAAhAAEIAgQACAAEAAFADAEEQIAAIgA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00ffffbfffffffff
Perceptual Hash:9f3f60411f3f6061
Difference Hash:d020066a60000000
Wavelet Hash:009f818190b0f0f0
Color Hash:#78783a

Other Hashes

Crop Resistant:2026666800200000,004080d0d0d04000

Scan History

Scan history not available

Unable to load historical scan data