Security Scan Report: testxyz123.top

Submitted: Apr 5, 2026, 1:45:28 PMCompleted: Apr 5, 2026, 1:46:53 PMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 2 countries across 3 domains to perform 38 HTTP transactions. The main domain is testxyz123.top and was registered NaN years ago.

Submitted URL: https://testxyz123.top/

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

High‑risk phishing site impersonating Telegram, using known malicious kits; avoid interaction and report.

Risk Factors
Brand impersonation of a major service (Telegram)
Known malicious phishing kit detected (critical and high confidence)
New, unranked domain (<90 days old)
High JavaScript obfuscation score (critical)
Mismatch between brand and domain
Domain age information unavailable

Details

Page Title

Secure Messenger

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

corporate

(50%)

Domain Information

Within the .top top-level domain, 'testxyz123.top' is registered and has no subdomain. The core label 'testxyz123' covers 10 characters holding 1 vowel versus six consonants; bonus characters include 3 digits. Splitting it apart reveals three words: test, xyz, 123. Expect 3 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://testxyz123.top/

Page Load Overview

1.98s
Total Load Time
26
HTTP Requests
3
Domains
301 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:235 chars
Detector Agreement:100%

Website Classification

Primary Category

corporate50% confidence
Type: static
Method: structural

All Detected Categories

corporate
50%

Detected Features

OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
13149.154.167.99Amsterdam, North Holland, Netherlands
AS62041Telegram Messenger Inc
1364.29.17.3United States
AS16509Amazon.com, Inc.
262--

Detected Technologies3

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T185F12E62F764E83A2357027C35D1F10E47E2A447D381AA50B9F972E50F8FDAB80E7225

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:ujtSoUZZUG70t43OQYaLiK5qc75ZhE58t:KtSGsB3OQ9LiK5RHB

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:7717:HAWCKREMBgFQPSkgMEWLEJLD2iWxfCCAEDUw4CogJABBsjAoBWGUAYGgYOBFQBkjGECIB4BUMHkKhBEiGAwGgCCSSGiqFiEF

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffffe7e7e7ffffff
Perceptual Hash:b323cccc3333cccc
Difference Hash:0008080c0c000000
Wavelet Hash:3f272727243c3030
Color Hash:#a9d279

Other Hashes

Crop Resistant:0008080c0c000000

Scan History

Scan history not available

Unable to load historical scan data