ScanMalware.com

Security Scan Report: 351628.com

Redirected to:
https://hllj.okj2nc.mqgu23k.com:3443/tianyu/#/pages/index/home
Submitted: Jun 9, 2026, 3:07:33 PMCompleted: Jun 9, 2026, 3:09:02 PMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 2 countries across 2 domains to perform 2 HTTP transactions. The main domain is hllj.okj2nc.mqgu23k.com and was registered NaN years ago.

Submitted URL: https://351628.com/

Effective URL: https://hllj.okj2nc.mqgu23k.com:3443/tianyu/#/pages/index/homeRedirected

AI Security Verdict

High Risk

Confidence: 78%

9
Risk Score

The site is a newly registered, unranked domain with heavily obfuscated JavaScript and a suspicious redirect, indicating high risk of malicious activity.

Risk Factors
Newly registered domain (<7 days)
Unranked domain reputation
Highly obfuscated JavaScript
Suspicious redirect to non‑standard subdomain
Absence of any legitimate forms or content
Domain age information unavailable

Details

Page Title

N/A

Scan Type

public

Language

🇨🇳

Chinese

(60% confidence)

Category

news media journalism

(35%)

Domain Information

The domain '351628.com' uses the commercial generic top-level domain (.com) while skipping any subdomain. The registrable portion '351628' spans 6 characters split between zero vowels and zero consonants, plus 6 digits. It segments into 1 word: 351628. Median word length is six characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://351628.com/

Page Load Overview

8.68s
Total Load Time
59
HTTP Requests
5
Domains
2.2 MB
Total Size

Language Analysis

Primary Language

🇨🇳Chinese
Code: zh
Confidence:60%
Script:Han
Direction:ltr

Detection Details

Language Code:zh
Detection Confidence:60%
Script Type:Han
HTML Lang Attribute:zh-CN
Text Length:94 chars
Detector Agreement:100%

Website Classification

Primary Category

news media journalism35% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

news media journalism
35%
finance banking
33%
e-commerce shopping
31%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
3034.96.153.175Hong Kong, Hong Kong
AS396982Google LLC
29103.30.201.173China
AS133115HK Kwaifong Group Limited
592--

Detected Technologies3

X-UA-Compatible
100%
Microsoft ASP.NET
40%
Vue.js
30%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T14C531932710E29075033C84469C0C76D952B9713C55309A9F79D2B7F8FD7EEA0AB6B8A

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:92dZXEnLil6MjCP7WmKJUt64ckiVY1FZBsfMWsfpdsfvIsfCAsfmJTzhBeC3D:W7

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:62513:GRIjqBACAb2gB0DUCojPIaQQgLhQBJBRBoADGBIELCRizIQDKCxx1I0DAfQNKJGiA6EcC4QMuCMMTnQJQgJ+QQ+coJUAv0NI

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:e7e7ffffffffffff
Perceptual Hash:a222228888888888
Difference Hash:0c0c080000000000
Wavelet Hash:ffe7ffff00000000
Color Hash:#93841f

Other Hashes

Crop Resistant:0c0c080000000000

Scan History

Scan history not available

Unable to load historical scan data