Security Scan Report: www.booking4.sellingplatformconnect.amadeus.com

Redirected to:
https://www.sellingplatformconnect.amadeus.com/login/
Submitted: Apr 3, 2026, 9:00:39 PMCompleted: Apr 3, 2026, 9:01:02 PMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 1 country across 3 domains to perform 12 HTTP transactions. The main domain is sellingplatformconnect.amadeus.com and was registered NaN years ago.

Submitted URL: https://www.booking4.sellingplatformconnect.amadeus.com

Effective URL: https://www.sellingplatformconnect.amadeus.com/login/Redirected

The Cisco Umbrella rank of the primary domain is #43,383 of the top 1 million websites

AI Security Verdict

Moderate Risk

Confidence: 82%

6
Risk Score

Suspicious password‑only form on a legitimate Amadeus subdomain; likely credential phishing.

Risk Factors
Password‑only credential harvesting form
Cross‑origin password submission
Obfuscated JavaScript (high obfuscation score) indicating attempt to hide behavior
Safety Factors
Domain age > 33 years (well‑established)
Cisco Umbrella rank within top 100 k
No malicious Indicators of Compromise matches
No YARA JavaScript malware detections
No network IDS alerts
Domain age information unavailable

Details

Page Title

Amadeus Selling Platform Connect

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

phishing scam

(85%)

Domain Information

Domain 'www.booking4.sellingplatformconnect.amadeus.com' uses the commercial generic top-level domain (.com); it also runs on subdomain 'www.booking4.sellingplatformconnect'. Count 7 characters in 'amadeus' containing 4 vowels alongside three consonants. Segmentation suggests one word: amadeus. Expect 7 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.booking4.sellingplatformconnect.amadeus.com

Page Load Overview

0.83s
Total Load Time
32
HTTP Requests
3
Domains
2.3 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:394 chars
Detector Agreement:100%

Website Classification

Primary Category

phishing scam85% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

phishing scam
85%
technology software
54%
government public service
35%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1623.36.162.213Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
1692.123.104.55Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
322--

Detected Technologies1

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T10AC321E8E869B43F24039CAE84C7A82657157CC9EF496BD4F38D98983CC67F31512B64

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:Dlb3J9njHLn55lPTXz7dp5YFo1Hv/XDf55jZzvLzzNLtdLk+o383/KteS/IEBd:DNo38+p9

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:119276:pAtWAUoFMAkGAHEhMNATAJDtAPCCJcCMU4UtNBOHykGJRYChCBIFLAYoIExFJwIEB9aAQTMAAEkm5QKcCkQSDALAQECgFxAg

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0f0707070707070f
Perceptual Hash:b22dcd4acdb6c914
Difference Hash:2daf6d0d0d6d2cad
Wavelet Hash:3f070707070707ff
Color Hash:#783a74

Other Hashes

Scan History

Scan history not available

Unable to load historical scan data