Security Scan Report: aostarglobalxpress.com

Site favicon
Submitted: Jun 3, 2026, 2:34:40 PMCompleted: Jun 3, 2026, 2:35:49 PMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 2 countries across 3 domains to perform 2 HTTP transactions. The main domain is aostarglobalxpress.com and was registered NaN years ago.

Submitted URL: https://aostarglobalxpress.com/login-check.html?v=2

AI Security Verdict

High Risk

Confidence: 85%

7
Risk Score

The site cloaks content and impersonates Facebook on a new, unranked domain, indicating a high‑risk phishing operation.

Risk Factors
Cloaking/evasion technique
Brand impersonation on a non‑official domain
Unranked / low‑reputation domain
Recent domain registration
Domain age information unavailable

Details

Primary Scan Blocked — Fallback Capture Shown

The primary scanner could not load this page (possible bot protection). The screenshot and page details shown were captured by a fallback browser that loaded the page successfully.

Page Title

Facebook — Logga in eller registrera dig

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

The domain 'aostarglobalxpress.com' uses the commercial generic top-level domain (.com). The core label 'aostarglobalxpress' covers 18 characters holding six vowels versus 12 consonants. Breaking it apart gives four words: ao, star, global, xpress. Median word length comes out to 5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://aostarglobalxpress.com/login-check.html?v=2

Page Load Overview

0.26s
Total Load Time
5
HTTP Requests
1
Domains
4 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:765 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: static
Method: structural

All Detected Categories

No categories detected

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
3172.67.128.247United States
AS13335Cloudflare, Inc.
1157.240.0.37Frankfurt am Main, Hesse, Germany
AS32934Facebook, Inc.
1157.240.0.35Frankfurt am Main, Hesse, Germany
AS32934Facebook, Inc.
53--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T16022959B26BB05215A17E4A56FE7071A3165C007954BC9183FEC56C88FCBED89AF338C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:rrCR81K5zQ0RwPLF9V+PF2xIgQXTFbWzNhmjQ0TzG9Ci/Ng9OLoTXnG:rrCYXLkzGUi/Ng9OLoTXnG

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:10886:Qw4Jk8AQOBAAwAgJlKBABcQBBSqAwEVNRADFBUJDIhzGgVEDQAewCgMiNAjWhsCDgCCSTZABRoZUdyIAOXwgFIaBEIBBgAaE

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffffffe7e7ffffe7
Perceptual Hash:b399cc6633998c66
Difference Hash:080000084d08000c
Wavelet Hash:243c3c24e0f8f0e0
Color Hash:#2d863e

Other Hashes

Crop Resistant:080000084d08000c

Scan History

Scan history not available

Unable to load historical scan data