ScanMalware.com

Security Scan Report: hnwpa.top

Redirected to:
https://www.amazon.com/
Submitted: Apr 30, 2026, 11:08:22 AMCompleted: Apr 30, 2026, 11:09:32 AMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 2 countries across 4 domains to perform 1 HTTP transaction. The main domain is amazon.com and was registered NaN years ago.

Submitted URL: http://hnwpa.top/

Effective URL: https://www.amazon.com/Redirected

AI Security Verdict

Moderate Risk

Confidence: 92%

5
Risk Score

The site impersonates Amazon using meta tags and redirects, with strong phishing indicators despite its age; avoid and report.

Risk Factors
Brand impersonation with domain mismatch
Unranked domain on a major brand name
Critical IDS alert for obfuscation
DevTools blocking
Redirects to legitimate site (potential lure)
Safety Factors
Domain age >30 years (well‑established)
No malicious Indicators of Compromise detected
No credential or payment forms present
No JavaScript malware YARA matches
Established domain (11502 days old) with no strong malicious indicators — risk clamped from 8 to 5
Domain age information unavailable

Details

Bot Protection Detected

This website is protected by bot_detected bot protection. Our scanner was challenged or blocked during access.

Page Title

Amazon.com

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

e-commerce shopping

(90%)

Domain Information

The domain 'hnwpa.top' uses the .top top-level domain. Its registrable label 'hnwpa' stretches across 5 characters holding 1 vowel versus 4 consonants. Splitting it apart reveals 2 words: hn, wpa. The median word length lands at 2.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://hnwpa.top/

Page Load Overview

1.31s
Total Load Time
24
HTTP Requests
6
Domains
101 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-us
Text Length:153 chars
Detector Agreement:100%

Website Classification

Primary Category

e-commerce shopping90% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

e-commerce shopping
90%
corporate business
32%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
618.172.112.56United States
AS16509Amazon.com, Inc.
6104.18.95.41United States
AS13335Cloudflare, Inc.
613.33.52.208New York, New York, United States
AS16509Amazon.com, Inc.
6192.166.225.79Netherlands
AS63023GTHost
244--

Detected Technologies1

X-UA-Compatible
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1AF41938719F880421233AD668D63F50C2E91E49B1385C4157ECED2005F897A74A437AE

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

48:TmJ223oIp2nVNkamTjzW8dt6N2k+iwkfWzYdpoj:TmJGXVKamTXWt2kIkfpvoj

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:2006:ABIAQgAEEACAAAAAQACABQIgwAAgIBAAAACAAAgQBAAMAAAgAQAABAAEAJgCAAAACggAAEAAAAAkAAQACCBAAAMAAIAgAAsE

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:e7e7e7ffffffffff
Perceptual Hash:b33333998ccccccc
Difference Hash:0c0c0d0800000000
Wavelet Hash:e3e300e3f0f0f0f0
Color Hash:#a46ce0

Other Hashes

Crop Resistant:0c0c0d0800000000

Scan History

Scan history not available

Unable to load historical scan data