ScanMalware.com

Security Scan Report: xulor.top

Redirected to: https://xulor.top/#/

Submitted: Nov 10, 2025, 9:26:32 PMCompleted: Nov 10, 2025, 9:27:01 PMpubliccompleted
Loading additional data...

Summary

This website contacted 64 IPs in 0 countries across 5 domains to perform 74 HTTP transactions. The main domain is xulor.top and was registered NaN years ago.

Submitted URL: https://xulor.top/

Effective URL: https://xulor.top/#/Redirected

AI Security Verdict

High Risk

Confidence: 92%

10
Risk Score

High risk phishing site impersonating BigONE on a brand‑new unranked domain.

Risk Factors
Brand impersonation on a newly registered, unranked domain
Critical domain age (<7 days) increases likelihood of phishing
Unranked domain with brand name suggests typoesquatting
Domain age information unavailable

Details

Page Title

BigONE

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

cryptocurrency blockchain

(94%)

Domain Information

The domain name 'xulor.top' uses the .top top-level domain without a subdomain. The core label 'xulor' covers 5 characters containing 2 vowels alongside 3 consonants. Breaking it apart gives 2 words: xul, or. Average segment length settles at 2.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://xulor.top/

Page Load Overview

3.06s
Total Load Time
74
HTTP Requests
5
Domains
718 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:664 chars
Detector Agreement:100%

Website Classification

Primary Category

cryptocurrency blockchain94% confidence
Type: static
Method: ml+structural

All Detected Categories

cryptocurrency blockchain
94%
finance banking
77%
e-commerce shopping
75%
adult content
58%
government public service
49%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1152.219.198.21UnknownUnknown
13.5.155.246UnknownUnknown
1142.250.186.106UnknownUnknown
152.219.162.249UnknownUnknown
13.5.157.59UnknownUnknown
13.5.159.132UnknownUnknown
1188.114.97.3UnknownUnknown
152.219.150.133UnknownUnknown
13.5.157.173UnknownUnknown
152.219.150.41UnknownUnknown
7464--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1EA434038724374B3457BA4D0F0D45E08B2929B3BC6248654EBB9237A77CACF16E553E8

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:uooYpeCVgJFYGNpXDRm8DSqmfV/8DSqmfuSJBQSJm6zuAEjN2AAXPPLpA2hiGxaC:uooYpeCVgJFVNpXDU8S80x3b

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:58098:iNFSLSIAaBRSgCiIKKlMCToDRgQGCqeKBAV+dGNKJwhQBQMCgS0CjK45TDUwAAIToCACoGizzFSABVpECpkooAARUEFy2Vgw

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:N/A
Perceptual Hash:N/A
Difference Hash:N/A
Wavelet Hash:N/A
Color Hash:N/A

Other Hashes

Crop Resistant:N/A

Scan History

Scan history not available

Unable to load historical scan data