Security Scan Report: bpwasapp.com

Redirected to:
https://bpwasapp.com/#/
Site favicon
Submitted: Jul 6, 2026, 3:27:31 PMCompleted: Jul 6, 2026, 3:28:51 PMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 2 HTTP transactions. The main domain is bpwasapp.com and was registered NaN years ago.

Submitted URL: https://bpwasapp.com/

Effective URL: https://bpwasapp.com/#/Redirected

AI Security Verdict

Low Risk

Confidence: 72%

3
Risk Score

New, self‑branded site with no forms; elevated risk due to age and obfuscated script but no concrete malicious signals.

Risk Factors
Very new domain (<30 days)
High JavaScript obfuscation score
Safety Factors
Self‑branding (site presents its own brand)
No forms collecting credentials or payment data
No external IoC or malware detections
Verdict cited a credential/login form, but DOM analysis found no password field (real or disguised) or payment field, and no other hard signal — credential-phishing framing unsupported; risk adjusted from 5 to 3
Domain age information unavailable

Details

Page Title

BPWASAPP

Scan Type

public

Language

🇸🇦

Arabic

(60% confidence)

Category

finance banking

(66%)

Domain Information

The domain name 'bpwasapp.com' uses the commercial generic top-level domain (.com) with no subdomain. Its registrable label 'bpwasapp' stretches across 8 characters containing two vowels alongside 6 consonants. Segmentation suggests 3 words: bp, was, app. Average segment length settles at 3 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://bpwasapp.com/

Page Load Overview

3.47s
Total Load Time
65
HTTP Requests
3
Domains
1.2 MB
Total Size

Language Analysis

Primary Language

🇸🇦Arabic
Code: ar
Confidence:60%
Script:Arabic
Direction:rtl

Detection Details

Language Code:ar
Detection Confidence:60%
Script Type:Arabic
HTML Lang Attribute:zh-CN
Text Length:5,395 chars
Detector Agreement:100%
Language mismatch: Declared as zh but detected as ar

Website Classification

Primary Category

finance banking66% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

finance banking
66%
healthcare medical
34%
government public service
33%
adult content
26%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
65188.114.96.3Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
651--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T193341128725B76235533C4D0F4986F56B166EB37CA464E10E3AA1E198FFBCE83B41B14

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:ymr+RHfUR7edf+TyRsr/tMyzR6/6r6R6V6n6q5UNKlSIYNl80l3Y97VL8:yITyRsr/tMyzR6/6r6R6V6n6qj7VL8

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:239506:YtDQSGAC4pTkO0DEJLJdwSRegAFyA0SB6kKglQoYViaUF0dzgDAKPALQAOgOgWAIBQeGhIA/BESgoBLBBIYpyB+ASllkn5JJ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:e7e7e7ffe7e7e7e7
Perceptual Hash:e633666698998e66
Difference Hash:4d4d4d54554d4d4d
Wavelet Hash:07070707c7c7c7c7
Color Hash:#3a7864

Scan History

Scan history not available

Unable to load historical scan data