ScanMalware.com

Security Scan Report: trufinsh.net

Redirected to:
https://trufinsh.net/login?from=%2Forders
Site favicon
Submitted: May 16, 2026, 10:54:22 PMCompleted: May 16, 2026, 10:55:57 PMpubliccompleted
Loading additional data...

Summary

This website contacted 10 IPs in 4 countries across 10 domains to perform 20 HTTP transactions. The main domain is trufinsh.net and was registered NaN years ago.

Submitted URL: https://trufinsh.net/orders

Effective URL: https://trufinsh.net/login?from=%2FordersRedirected

AI Security Verdict

High Risk

Confidence: 92%

6
Risk Score

The site is a very new, unranked domain exhibiting malware C2 activity and heavy script obfuscation, indicating a high‑risk malware distribution site.

Risk Factors
Very new, unregistered domain
Unranked in Cisco Umbrella reputation database
Critical IDS alerts indicating malware and command‑and‑control activity
High JavaScript obfuscation and suspicious static analysis patterns
Lack of legitimate content or functional forms
Domain age information unavailable

Details

Page Title

N/A

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

social media network

(85%)

Domain Information

Within the network infrastructure generic top-level domain (.net), 'trufinsh.net' is registered while skipping any subdomain. Count 8 characters in 'trufinsh' holding 2 vowels versus six consonants. Splitting it apart reveals three words: tru, fins, h. The median word length lands at three characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://trufinsh.net/orders

Page Load Overview

4.48s
Total Load Time
48
HTTP Requests
18
Domains
1005 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-IN
Text Length:89 chars
Detector Agreement:100%

Website Classification

Primary Category

social media network85% confidence
Type: spa
Method: ml+structural

All Detected Categories

social media network
85%
e-commerce shopping
41%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1215.207.162.142Mumbai, Maharashtra, India
AS16509Amazon.com, Inc.
4142.251.110.95United States
AS15169Google LLC
457.144.244.128Frankfurt am Main, Hesse, Germany
AS32934Facebook, Inc.
4192.178.183.94United States
AS15169Google LLC
4142.251.110.97United States
AS15169Google LLC
420.250.198.32Zurich, Zurich, Switzerland
AS8075Microsoft Corporation
4151.101.130.217United States
AS54113Fastly, Inc.
452.222.232.56United States
AS16509Amazon.com, Inc.
4142.251.127.95United States
AS15169Google LLC
418.64.16.115United States
AS16509Amazon.com, Inc.
4810--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T11CD239970C98B46042674696DFFABF1D923D9027D541DC8FB29ECB2C8BD75D88E0218E

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:dKF7qg4yqWtBp8HjVx+HyVHXXSHUrScCoPjLGlcXl:cJqZyq3HjVIHyVSgScCMLGmXl

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:30241:ZosAXQYIIyAdBlYogEBVR5GDQIC9JBCChCUNIUYCgoRQIMbiIAwChHO1ElAHEAdJOI0CgiBFgMmWAbsOEQZIOgAMIUCBog4i

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffffffe7e7ffffff
Perceptual Hash:a23388cc223388cc
Difference Hash:0000000808000000
Wavelet Hash:0c0c3c24e4fcfcfc
Color Hash:#6ca8e0

Other Hashes

Crop Resistant:0000000808000000

Scan History

Scan history not available

Unable to load historical scan data