Security Scan Report: btbuu.com

Redirected to: https://btbuu.com/Login/index.html

Site favicon
Submitted: Dec 30, 2025, 1:04:54 AMCompleted: Dec 30, 2025, 1:06:02 AMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 1 country across 3 domains to perform 21 HTTP transactions. The main domain is btbuu.com and was registered NaN years ago.

Submitted URL: https://btbuu.com/User/tgcode

Effective URL: https://btbuu.com/Login/index.htmlRedirected

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

New, unranked site with a login form flagged for social engineering – confirmed phishing scam.

Risk Factors
Domain age less than 7 days (critical)
Credential‑harvesting login form on a newly registered site
Google Safe Browsing social engineering detection
Unranked domain with no established reputation
Absence of noindex meta tag on a login page
Domain age information unavailable

Details

Page Title

N/A

Scan Type

public

Language

🇺🇸

English

(50% confidence)

Category

finance banking

(52%)

Domain Information

Domain 'btbuu.com' uses the commercial generic top-level domain (.com). Its registrable label 'btbuu' stretches across 5 characters split between two vowels and three consonants. Breaking it apart gives 2 words: bt, buu. Median word length is 2.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://btbuu.com/User/tgcode

Page Load Overview

2.19s
Total Load Time
21
HTTP Requests
3
Domains
136 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:50%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:50%
Script Type:Latin
Text Length:316 chars
Detector Agreement:100%

Website Classification

Primary Category

finance banking52% confidence
Type: webapp
Method: ml+structural

All Detected Categories

finance banking
52%
technology software
35%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
5151.101.129.229United States
4142.250.184.234United States
4206.119.180.146Los Angeles, California, United States
AS133199SonderCloud Limited
4172.217.23.106United StatesUnknown
4104.16.174.226United StatesUnknown
215--

Detected Technologies3

JQueryv1.10.2
100%
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T12582841093D45C3E701692C8DB6037AA74761757CA0A91007ABF2A75BF95EAB3C3B4CD

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:ofJiwYcAfo0fYQ0OoOJf0OJ2O1/SBYERPOaN3O4kBKYSdvYnrYr1ENTmJA+IFSNN:ofJHYcAfo0fYQZrF/SBYEJNpkBKYSdvB

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:19107:AQgShAQQAFsCIIS0VXJUAACA2AhLMQhAsYAAiAAACbgEQAA4KCADTCJUEmaWCuTmAKHOajEBChITZAQJIQLyBGCq6aPmigAA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:1818181818000000
Perceptual Hash:ccd9736266666662
Difference Hash:33b2b2b2b2300010
Wavelet Hash:f93e3c3c7c784029
Color Hash:#4a3a78

Other Hashes

Scan History

Scan history not available

Unable to load historical scan data