ScanMalware.com

Security Scan Report: m.hxr-wswhatsapp.cc

Site favicon
Submitted: Oct 12, 2025, 4:03:25 PMCompleted: Oct 12, 2025, 4:04:33 PMpubliccompleted
Loading additional data...

Summary

This website contacted 6 IPs in 3 countries across 3 domains to perform 31 HTTP transactions. The main domain is m.hxr-wswhatsapp.cc and was registered NaN years ago.

Submitted URL: https://m.hxr-wswhatsapp.cc/

AI Security Verdict

High Risk

Confidence: 92%

9
Risk Score

Phishing site impersonating WhatsApp; high risk and should be avoided.

Risk Factors
Impersonation of a well‑known brand (WhatsApp) on an unranked, newly created domain
Very new domain (10 days old) increasing likelihood of malicious intent
Google Safe Browsing detection of social engineering
Lack of legitimate brand verification – final URL is not an official WhatsApp domain
Heavy use of brand‑specific keywords and marketing copy to deceive users
Domain age information unavailable

Details

Page Title

m.hxr-wswhatsapp.cc

Scan Type

public

Language

🇨🇳

Chinese

(80% confidence)

Category

technology software

(88%)

Domain Information

The domain name 'm.hxr-wswhatsapp.cc' uses the .cc country-code top-level domain and includes subdomain 'm'. The core label 'hxr-wswhatsapp' covers 14 characters split between two vowels and eleven consonants, plus one hyphen. Splitting it apart reveals six words: hx, r, ws, what, s, app. Average segment length settles at two characters. 'hx' most often appears in Indonesian. It also appears in Chinese (Pinyin) and English contexts. Net impression: Indonesian phrase with character flair.

Screenshot

Security scan screenshot of https://m.hxr-wswhatsapp.cc/

Page Load Overview

35.60s
Total Load Time
31
HTTP Requests
3
Domains
1.7 MB
Total Size

Language Analysis

Primary Language

🇨🇳Chinese
Code: zh
Confidence:80%
Script:Han
Direction:ltr

Detection Details

Language Code:zh
Detection Confidence:80%
Script Type:Han
HTML Lang Attribute:zh-CN
Text Length:2,858 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software88% confidence
Type: static
Method: ml+structural

All Detected Categories

technology software
88%
social media network
81%
corporate business
74%
news media journalism
58%
government public service
56%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
6103.80.133.96Seoul, Seoul, South Korea
AS205960Hdtidc Limited
543.174.227.42Singapore
AS139341ACE
5119.188.220.225China
AS4837CHINA UNICOM China169 Backbone
549.71.39.36China
AS137697CHINATELECOM JiangSu YangZhou IDC networkdescr: YangZhouJiangsu Province, P.R.China.
543.174.229.41Singapore
AS139341ACE
5240d:c010:74:3::b9Singapore
AS139341ACE
316--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T126C2D73108413B771317F5CDD016FF1AB6DB4B69A99B0C06AAF852DC4FE2E05F906A85

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:fNI+l/ZyWP9X9Q9xsajjKK06Pp1c1XMN95W2EEaEJEAU6fEk+z+bQTKZ7t2/q:fN9lByUx6HsajjKK06Pp1c1XMN9859Wl

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:27752:IiyxpIJAV9VBEZiAnQAOCUIW940BGRlIDO6CiQkgkijQAIWYAxOFgogyASoDMF4ARkJIICSCAEVIY00VyassAyp2AjoAHAGM

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:9982809090f8ffff
Perceptual Hash:fc3c99999c89692c
Difference Hash:3336372624c3080a
Wavelet Hash:99f2808080f0ffff
Color Hash:#d24b2d

Other Hashes

Crop Resistant:3336372624c3080a

Scan History

Scan history not available

Unable to load historical scan data