ScanMalware.com

Security Scan Report: www.thesamur.ai

Site favicon
Submitted: Oct 8, 2025, 2:57:10 PMCompleted: Oct 8, 2025, 2:58:48 PMpubliccompleted
Loading additional data...

Summary

This website contacted 116 IPs in 3 countries across 23 domains to perform 59 HTTP transactions. The main domain is thesamur.ai and was registered NaN years ago.

Submitted URL: https://www.thesamur.ai/apps/sora-2

AI Security Verdict

High Risk

Confidence: 85%

7
Risk Score

Site impersonates OpenAI's Sora 2 on an unrelated domain, posing a phishing risk.

Risk Factors
Brand impersonation of OpenAI on a non‑official domain
Unranked domain presenting a well‑known brand
Potential social engineering via misleading product claims
Domain age information unavailable

Details

Page Title

Sora 2 - Best AI apps of 2024

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

social media network

(39%)

Domain Information

The domain name 'www.thesamur.ai' uses the Anguillan country-code top-level domain (.ai) with subdomain 'www'. The second-level label 'thesamur' is 8 characters long containing three vowels alongside five consonants. Breaking it apart gives three words: the, s, amur. The median word length lands at 3 characters. Most frequently, 'the' shows up in English. You will also see it in Chinese (Pinyin) and Slovak contexts.

Screenshot

Security scan screenshot of https://www.thesamur.ai/apps/sora-2

Page Load Overview

45.43s
Total Load Time
59
HTTP Requests
23
Domains
346 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:3,632 chars
Detector Agreement:100%

Website Classification

Primary Category

social media network39% confidence
Type: spa
Method: ml+structural

All Detected Categories

social media network
39%
entertainment media
36%
technology software
33%
corporate
25%

Detected Features

OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
59216.58.206.46United States
AS15169GOOGLE
0104.16.174.226United States
AS13335CLOUDFLARENET
0142.250.185.72United States
AS15169GOOGLE
0142.250.185.234United States
AS15169GOOGLE
03.123.181.193Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
0172.67.71.162United States
AS13335CLOUDFLARENET
0104.18.160.117United States
AS13335CLOUDFLARENET
0143.204.98.51United States
AS16509AMAZON-02
0104.17.111.223United States
AS13335CLOUDFLARENET
03.171.214.34United States
AS16509AMAZON-02
59116--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T189F209B3B160097AA1134AD9F3A1F71DF2A7D047CA538CD8B2ED8345BB86E814425E5E

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:TCcDWm5lHrJpg7dCGBDugDc7EnscPxmD306TVRx/5nBZTDx1UDEvh35mHQC1UOrG:R/rJpqrM7L/lvh35mHQlOr4yA

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:35008:0JgIIAAAEsTOxigKsotRC5gXRLAQAHsoFGgGWiBCACs9mCW8SyQlQKKgAmiMByBdFTQSEhoAQuAyEUAABCCInYRxBEYH5Baw

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:f37f7fdfffffe7c3
Perceptual Hash:a49867de659e6588
Difference Hash:04b0b0b4162c0c4e
Wavelet Hash:c25e5e4fc3c3c2c2
Color Hash:#53ac8d

Other Hashes

Crop Resistant:04b0b0b4162c0c4e,0101010101010101

Scan History

Scan history not available

Unable to load historical scan data