ScanMalware.com

Security Scan Report: nbuoj1jaskdk.icu

Redirected to: https://nbuoj1jaskdk.icu/#/pages/login/login

Submitted: Mar 18, 2026, 12:03:20 AMCompleted: Mar 18, 2026, 12:05:01 AMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 2 countries across 5 domains to perform 1 HTTP transaction. The main domain is nbuoj1jaskdk.icu and was registered NaN years ago.

Submitted URL: http://nbuoj1jaskdk.icu/

Effective URL: https://nbuoj1jaskdk.icu/#/pages/login/loginRedirected

AI Security Verdict

Confirmed Scam

Confidence: 92%

10
Risk Score

New login‑styled site on a known‑malicious IP; likely malicious and should be avoided.

Risk Factors
Presence of a malicious IP (Indicators of Compromise)
Domain registered only 3 days ago (critical new domain)
Login‑related page title on a brand‑new, unranked domain
Multiple redirects (potential obfuscation)
Domain age information unavailable

Details

Page Title

登录

Scan Type

public

Language

🇨🇳

Chinese

(60% confidence)

Category

finance banking

(26%)

Domain Information

You're looking at domain 'nbuoj1jaskdk.icu' on the .icu top-level domain while skipping any subdomain. The registrable portion 'nbuoj1jaskdk' spans 12 characters split between 3 vowels and eight consonants, along with one digit. Splitting it apart reveals 7 words: n, bu, oj, 1, j, ask, dk. Median word length is two characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://nbuoj1jaskdk.icu/

Page Load Overview

17.81s
Total Load Time
85
HTTP Requests
5
Domains
34.7 MB
Total Size

Language Analysis

Primary Language

🇨🇳Chinese
Code: zh
Confidence:60%
Script:Han
Direction:ltr

Detection Details

Language Code:zh
Detection Confidence:60%
Script Type:Han
HTML Lang Attribute:zh-CN
Text Length:88 chars
Detector Agreement:100%

Website Classification

Primary Category

finance banking26% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

finance banking
26%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
17198.176.60.27Hong Kong, Hong Kong
AS140227Hong Kong Communications International Co., Limited
178.141.181.228Beijing, Beijing, China
AS37963Hangzhou Alibaba Advertising Co.,Ltd.
17111.231.169.247Shanghai, Shanghai, China
AS45090Shenzhen Tencent Computer Systems Company Limited
17163.181.58.166Unknown
AS24429
1738.181.2.34Hong Kong, Hong Kong
AS140227Hong Kong Communications International Co., Limited
855--

Detected Technologies2

X-UA-Compatible
100%
Vue.js
30%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T15E33C632F50D2A249437DD35A8D56629A215E333C10384ECB7DD771D8FCB9AB2EA0789

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:HdZXEnz3sxeF0aCYGXV2Ot/q17MAXTzhBeC3D:W3sxeF0aCYGXV2Ot/q17B

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:52037:EVGgQZGk8SRwwwIbW6SgQPDQg4VgXBEWAY2FumRxkAGGLGgGBiNpIHUogPxUCSI4IZPQhcxoJTGAAoMgCKEAQAYVdjZIQwFg

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffffdfcfdfdfdfff
Perceptual Hash:b8c6c7e338381cc7
Difference Hash:0000201030101000
Wavelet Hash:f0f0f0c0c0c0d0f0
Color Hash:#539dac

Other Hashes

Crop Resistant:0000201030101000

Scan History

Scan history not available

Unable to load historical scan data