ScanMalware.com

Security Scan Report: bento123ndxhealth.xyz

Site favicon
Submitted: Dec 30, 2025, 7:48:25 PMCompleted: Dec 30, 2025, 7:49:39 PMpubliccompleted
Loading additional data...

Summary

This website contacted 12 IPs in 2 countries across 7 domains to perform 303 HTTP transactions. The main domain is bento123ndxhealth.xyz and was registered NaN years ago.

Submitted URL: https://bento123ndxhealth.xyz/desktop/home

AI Security Verdict

Confirmed Scam

Confidence: 96%

10
Risk Score

New unranked site with hidden login fields; classified as confirmed phishing scam.

Risk Factors
Newly registered domain (<7 days) with credential‑harvesting form
Hidden password field (type="password" with CSS display:none)
Unranked domain lacking any established reputation
Login form on a site that appears to be a gambling promotion
Domain age information unavailable

Details

Page Title

BENTO123 # Situs Slot Online Dengan Bonus Promosi Paling Menguntungkan 2025.

Scan Type

public

Language

🇮🇩

ID

(80% confidence)

Category

gambling betting

(78%)

Domain Information

The domain name 'bento123ndxhealth.xyz' uses the open generic top-level domain (.xyz) while skipping any subdomain. The second-level label 'bento123ndxhealth' is 17 characters long split between 4 vowels and 10 consonants; bonus characters include three digits. Breaking it apart gives five words: bento, 123, nd, x, health. Median word length comes out to 3 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://bento123ndxhealth.xyz/desktop/home

Page Load Overview

5.50s
Total Load Time
232
HTTP Requests
7
Domains
1.5 MB
Total Size

Language Analysis

Primary Language

🇮🇩Indonesian
Code: id
Confidence:80%
Script:Unknown
Direction:ltr

Detection Details

Language Code:id
Detection Confidence:80%
Script Type:Unknown
HTML Lang Attribute:id
Text Length:3,287 chars
Detector Agreement:80%

Website Classification

Primary Category

gambling betting78% confidence
Type: webapp
Method: ml+structural

All Detected Categories

gambling betting
78%
entertainment media
57%
adult content
27%
social_media
25%
corporate
25%

Detected Features

Login Form
OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2323.50.131.155Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
1923.207.210.155Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
19188.114.97.3United States
AS13335CLOUDFLARENET
1952.222.232.141United States
AS16509AMAZON-02
1923.50.131.160Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
1965.8.102.72United States
AS16509AMAZON-02
1923.207.210.135Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
1952.222.232.184United States
AS16509AMAZON-02
1923.50.131.156Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
1965.8.102.94United States
AS16509AMAZON-02
23212--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1F4F3FF2258E5342312B350F569B07E4BEEC5A203C25A8E04B1FD07A59FE7F969C1376E

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:ZCzOOYBtZbDTaQfupykd2r5N4GdSAQeHauhp:ZCzOOYBtZbDTaQfupy7dSpe

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:170832:IE7yZECwNZoBJFFKxCRUgR2T1gRbJbQgAIkBhq3IqkgCViBAAQWgCEKEoaQKJKwIIWMgAFyFQkCU5IiSb8okA0iioIhNpAI6

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0020fcfe3cfd2101
Perceptual Hash:8b5522571dadd48b
Difference Hash:58e1f03278ebcb6b
Wavelet Hash:0038fcff3efd2101
Color Hash:#2db1d2

Other Hashes

Crop Resistant:dce60cf8e6ee6e0e,cecc5cdcd8725363,58e1f03278ebcb6b

Scan History

Scan history not available

Unable to load historical scan data