ScanMalware.com

Security Scan Report: 6ehqxp4.top

Redirected to: https://6ehqxp4.top/h5/index.html

Submitted: Oct 14, 2025, 6:33:02 PMCompleted: Oct 14, 2025, 6:36:26 PMpubliccompleted
Loading additional data...

Summary

This website contacted 17 IPs in 3 countries across 3 domains to perform 102 HTTP transactions. The main domain is 6ehqxp4.top and was registered NaN years ago.

Submitted URL: http://6ehqxp4.top/

Effective URL: https://6ehqxp4.top/h5/index.htmlRedirected

AI Security Verdict

High Risk

Confidence: 93%

10
Risk Score

Site uses URL manipulation on a brand‑new unranked domain – high‑risk phishing.

Risk Factors
Spoofed URL via history.pushState/replaceState (phishing technique)
Brand‑new domain (<7 days old) increases likelihood of scam
Unranked domain with no reputation
Domain age information unavailable

Details

Page Title

N/A

Scan Type

public

Language

🇨🇳

Chinese

(80% confidence)

Category

unknown

(0%)

Domain Information

Within the .top top-level domain, '6ehqxp4.top' is registered and has no subdomain. The second-level label '6ehqxp4' is 7 characters long holding one vowel versus 4 consonants, along with 2 digits. Tokenizing the label suggests 5 words: 6, e, hq, xp, 4. Average segment length settles at one character. The linguistic tilt is Italian for 'e'. It also appears in Albanian and Romanian contexts.

Screenshot

Security scan screenshot of http://6ehqxp4.top/

Page Load Overview

7.99s
Total Load Time
102
HTTP Requests
3
Domains
13.9 MB
Total Size

Language Analysis

Primary Language

🇨🇳Chinese
Code: zh
Confidence:80%
Script:Han
Direction:ltr

Detection Details

Language Code:zh
Detection Confidence:80%
Script Type:Han
HTML Lang Attribute:zh-CN
Text Length:913 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: dynamic
Method: structural

All Detected Categories

No categories detected

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
7043.132.105.214Hong Kong, Hong Kong
AS132203Tencent Building, Kejizhongyi Avenue
30104.21.70.171United States
AS13335CLOUDFLARENET
6124.220.205.65Shanghai, Shanghai, China
AS45090Shenzhen Tencent Computer Systems Company Limited
6172.67.138.6United States
AS13335CLOUDFLARENET
62408:4005:30a:4302:6218:d8d9:db29:65c1Hangzhou, Zhejiang, China
AS37963Hangzhou Alibaba Advertising Co.,Ltd.
6118.25.42.241Shanghai, Shanghai, China
AS45090Shenzhen Tencent Computer Systems Company Limited
62408:4005:30a:4302:6218:d8d9:db29:5dd8Hangzhou, Zhejiang, China
AS37963Hangzhou Alibaba Advertising Co.,Ltd.
62408:4005:30a:4302:6218:d8d9:db29:5de0Hangzhou, Zhejiang, China
AS37963Hangzhou Alibaba Advertising Co.,Ltd.
62408:4005:30a:4302:6218:d8d9:db29:5dd6Hangzhou, Zhejiang, China
AS37963Hangzhou Alibaba Advertising Co.,Ltd.
6124.221.80.91Shanghai, Shanghai, China
AS45090Shenzhen Tencent Computer Systems Company Limited
10217--

Detected Technologies1

X-UA-Compatible
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1D863722579473C276837C580B8E0DF1CE92B9736C11106A9F7AC27B69FC6CE54B26788

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:pedZXEnl6VVjiCAFpL+xDQwtbY+/aL8jUcYrmZ5sf/jsf0vsf6SsfoaTzhBeC3D:2Uv

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:70602:kEDCCQdlBRBQ1QAwAgnE0IysIEOGpCFFKEDGNKEi0CMBMR4AyygoMoIeJjcpAIkgEwBF3HsFQyCBBIDPwAoiArwFQAwSWIEM

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:fc1838a5ffe7c1f1
Perceptual Hash:de5e5cf0d372c048
Difference Hash:3060e1496d861f21
Wavelet Hash:dc1838a5ffe3c181
Color Hash:#1f2d93

Other Hashes

Crop Resistant:3060e1496d861f21,010383860b3b61d1

Scan History

Scan history not available

Unable to load historical scan data