ScanMalware.com

Security Scan Report: nbuoj1jaskdk.icu

Redirected to: https://nbuoj1jaskdk.icu/#/pages/login/login

Submitted: Mar 19, 2026, 8:46:22 PMCompleted: Mar 19, 2026, 8:48:06 PMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 3 countries across 5 domains to perform 1 HTTP transaction. The main domain is nbuoj1jaskdk.icu and was registered NaN years ago.

Submitted URL: https://nbuoj1jaskdk.icu/

Effective URL: https://nbuoj1jaskdk.icu/#/pages/login/loginRedirected

AI Security Verdict

Confirmed Scam

Confidence: 85%

9
Risk Score

Site hosts a known malicious IP and is a brand‑new, unranked domain; high risk despite lack of forms.

Risk Factors
Presence of a malicious IP indicator
Brand‑new domain (<7 days)
Unranked domain in Cisco Umbrella
Login‑related page title without a form (potential brand impersonation)
Critical JavaScript obfuscation
Domain age information unavailable

Details

Page Title

登录

Scan Type

public

Language

🇨🇳

Chinese

(60% confidence)

Category

finance banking

(26%)

Domain Information

Within the .icu top-level domain, 'nbuoj1jaskdk.icu' is registered and has no subdomain. Count 12 characters in 'nbuoj1jaskdk' containing three vowels alongside eight consonants, notching 1 digit. Segmentation suggests 7 words: n, bu, oj, 1, j, ask, dk. Median word length is two characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://nbuoj1jaskdk.icu/

Page Load Overview

21.95s
Total Load Time
84
HTTP Requests
5
Domains
34.0 MB
Total Size

Language Analysis

Primary Language

🇨🇳Chinese
Code: zh
Confidence:60%
Script:Han
Direction:ltr

Detection Details

Language Code:zh
Detection Confidence:60%
Script Type:Han
HTML Lang Attribute:zh-CN
Text Length:88 chars
Detector Agreement:100%

Website Classification

Primary Category

finance banking26% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

finance banking
26%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
20111.231.169.247China
AS37963
16163.181.58.166Frankfurt am Main, Hesse, Germany
AS24429Zhejiang Taobao Network Co.,Ltd
168.141.181.228Beijing, Beijing, China
AS37963Hangzhou Alibaba Advertising Co.,Ltd.
1638.181.2.34Hong Kong, Hong Kong
AS140227Hong Kong Communications International Co., Limited
16198.176.60.27Hong Kong, Hong Kong
AS140227Hong Kong Communications International Co., Limited
845--

Detected Technologies4

X-UA-Compatible
100%
HTTP/3
40%
HSTS
40%
Vue.js
30%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T16833C732F50D2A249437DD35A8C56629A215E333C10384ECB7DD771D8FCB9AB2EA1789

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:HdZXEnz3sxeF0aCYGXV2Ot/q17MAGTzhBeC3D:W3sxeF0aCYGXV2Ot/q17M

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:51853:EkkEsXEQAB8RoSCESQCwAYJwhsoUYB+mQge3lA1AEQCX8KJ5whMhIIkIMIAFuU7BhKaAACEpQCGQDurhIJAzIkqBKVGAYIMA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffffdfcfdfdfdfff
Perceptual Hash:b8c6c7e338381cc7
Difference Hash:0000201030101000
Wavelet Hash:f0f0f0c0c0c0d0f0
Color Hash:#6ce0ad

Other Hashes

Crop Resistant:0000201030101000

Scan History

Scan history not available

Unable to load historical scan data