Security Scan Report: buya.com

Redirected to:
https://www.buya.com/
Site favicon
Submitted: Jun 30, 2026, 5:38:29 PMCompleted: Jun 30, 2026, 5:40:10 PMpubliccompleted
Loading additional data...

Summary

This website contacted 7 IPs in 2 countries across 8 domains to perform 2 HTTP transactions. The main domain is buya.com and was registered NaN years ago.

Submitted URL: https://buya.com

Effective URL: https://www.buya.com/Redirected

The Cisco Umbrella rank of the primary domain is #478,834 of the top 1 million websites

AI Security Verdict

Moderate Risk

Confidence: 82%

5
Risk Score

The site contains credential‑collecting forms and heavily obfuscated JavaScript, indicating a high‑risk phishing page.

Risk Factors
Credential forms present
High JavaScript obfuscation with eval() usage
Low domain ranking (≈478 k) despite old age
Safety Factors
Domain age 8320 days (well‑established)
Self‑branding aligns with domain name
No external credential exfiltration detected
No malicious IoC, YARA, or IDS alerts
Established domain (8320 days old) with no strong malicious indicators — risk clamped from 7 to 5
Domain age information unavailable

Details

Page Title

Buya - marketplace

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

entertainment media

(99%)

Domain Information

The domain name 'buya.com' uses the commercial generic top-level domain (.com) without a subdomain. Its registrable label 'buya' stretches across 4 characters holding two vowels versus two consonants. It segments into 2 words: buy, a. Median word length comes out to two characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://buya.com

Page Load Overview

10.15s
Total Load Time
164
HTTP Requests
17
Domains
4.5 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:4,753 chars
Detector Agreement:100%

Website Classification

Primary Category

entertainment media99% confidence
Type: spa
Method: ml+structural+ocr_tiebreaker

All Detected Categories

entertainment media
99%
e-commerce shopping
61%
technology software
26%
e-commerce
20%

Detected Features

Login Form
Search
Products

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
26104.17.207.5Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
23192.178.183.97Google · CDNUnited States
AS15169Google LLC
23192.178.183.95Google · CDNUnited States
AS15169Google LLC
2340.83.217.18Azure · CLOUDSan Jose, California, United States
AS8075Microsoft Corporation
23157.240.0.6Frankfurt am Main, Hesse, Germany
AS32934Facebook, Inc.
23151.101.1.155Fastly · CDNUnited States
AS54113Fastly, Inc.
23142.251.14.95Google · CDNUnited States
AS15169Google LLC
1647--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T18154EBB2431C05EE0BDBE58870E27A4F2176DC75D44B8ECC63685A9C0EC5FE294E4AD8

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:btB+PCg3UDDa34ws1ALZNfnU2BfYAGfOzJ2tfTojAHI:btBwNfnU2mAhAHI

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:289560:SDAXkgBXIAAO4CAAnC44NABIpAGbCgMWMwigqVAIgjK0ASgQtFQICgo2KOBBwoTWK9IgEHP1dcEgBiUErgAAHsNBCDhZFEhh

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffff8181c381ffff
Perceptual Hash:fcd3c295d4136a91
Difference Hash:802b332b17330f35
Wavelet Hash:ffc181818381ffd1
Color Hash:#742d86

Scan History

Scan history not available

Unable to load historical scan data