ScanMalware.com

Security Scan Report: h5.booking-jp.com

Redirected to: https://h5.booking-jp.com/#/

Submitted: Mar 2, 2026, 3:58:19 AMCompleted: Mar 2, 2026, 3:59:55 AMpubliccompleted
Loading additional data...

Summary

This website contacted 7 IPs in 2 countries across 8 domains to perform 100 HTTP transactions. The main domain is h5.booking-jp.com and was registered NaN years ago.

Submitted URL: http://h5.booking-jp.com/

Effective URL: https://h5.booking-jp.com/#/Redirected

AI Security Verdict

Confirmed Scam

Confidence: 92%

10
Risk Score

New unranked domain impersonates Booking.com; classified as confirmed scam.

Risk Factors
Brand impersonation on a newly registered domain
Critical domain age (<7 days)
Unranked domain with high‑value brand name
Domain age information unavailable

Details

Page Title

Scan Type

public

Language

🇺🇸

English

(50% confidence)

Category

documentation technical

(50%)

Domain Information

You're looking at domain 'h5.booking-jp.com' on the commercial generic top-level domain (.com), featuring subdomain 'h5'. Count 10 characters in 'booking-jp' holding three vowels versus 6 consonants, notching one hyphen. Segmentation suggests two words: booking, jp. Median word length is 4.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://h5.booking-jp.com/

Page Load Overview

10.30s
Total Load Time
109
HTTP Requests
10
Domains
4.0 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:50%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:50%
Script Type:Latin
HTML Lang Attribute:zh-CN
Text Length:5,423 chars
Detector Agreement:100%
Language mismatch: Declared as zh but detected as en

Website Classification

Primary Category

documentation technical50% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

documentation technical
50%
healthcare medical
44%
adult content
42%
news media journalism
42%
finance banking
35%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
19185.199.111.153United States
AS54113Fastly, Inc.
15156.225.108.41Hong Kong
AS139057Edgenext Legend Dynasty Pte. Ltd.
15104.18.23.242United States
AS13335Cloudflare, Inc.
15121.127.232.46Hong Kong
AS152194CTG Server Limited
15111.231.169.247Unknown
AS13335
15108.138.7.56Unknown
AS16509
1518.245.31.81United States
AS16509Amazon.com, Inc.
1097--

Detected Technologies1

X-UA-Compatible
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T13F54B675790A247B7237D4F0E0956F1D61A29B32C2A37E65B39C23394FDAEE164E2310

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:K2QLU3uhOicImgcaqTND1j8fGzidtbQQ1XLAYtk++d+P1UQQkncvFE:tQ5ZmgcaqJDCfAidtbQQ1XLAYtk++d+x

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:290920:KChRqUDMB6BDQ8ohqACABmKFCXGIhHhIBQBAqxACAUsIYwLQ+JhhQV0IKKGkBiAgKE1lWAkEdVBQov6BEAtAgYQQU3ABAA3E

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:000000ff81ff8180
Perceptual Hash:ab106f8bf4c1946b
Difference Hash:63f9ec8071514b47
Wavelet Hash:00007fff81ffe1c1
Color Hash:#9953ac

Other Hashes

Crop Resistant:6b616070e0fa7d6d,a680b05160d10f45,f96deea2e2a2a8a2,0000103232300810,9089e316578e8c89

Scan History

Scan history not available

Unable to load historical scan data