ScanMalware.com

Security Scan Report: dku-wswhatsapp.cc

Site favicon
Submitted: Oct 12, 2025, 3:19:20 PMCompleted: Oct 12, 2025, 3:21:14 PMpubliccompleted
Loading additional data...

Summary

This website contacted 6 IPs in 3 countries across 3 domains to perform 31 HTTP transactions. The main domain is dku-wswhatsapp.cc and was registered NaN years ago.

Submitted URL: https://dku-wswhatsapp.cc/

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

Confirmed phishing site impersonating WhatsApp; do not trust or use.

Risk Factors
Brand impersonation of WhatsApp on an untrusted, newly registered domain
Very new domain (<30 days) with no reputation
UNRANKED domain (not in top 1 M) while claiming to be a major service
Potential credential harvesting via QR‑code login flow (common for WhatsApp phishing)
Domain age information unavailable

Details

Page Title

dku-wswhatsapp.cc

Scan Type

public

Language

🇨🇳

Chinese

(80% confidence)

Category

social media network

(87%)

Domain Information

The domain 'dku-wswhatsapp.cc' uses the .cc country-code top-level domain while skipping any subdomain. The registrable portion 'dku-wswhatsapp' spans 14 characters split between 3 vowels and ten consonants, along with one hyphen. Breaking it apart gives 6 words: d, ku, ws, what, s, app. Median word length is two characters. 'd' most strongly signals Chinese (Pinyin). Secondary signals appear in English and Indonesian.

Screenshot

Security scan screenshot of https://dku-wswhatsapp.cc/

Page Load Overview

65.93s
Total Load Time
31
HTTP Requests
3
Domains
90 KB
Total Size

Language Analysis

Primary Language

🇨🇳Chinese
Code: zh
Confidence:80%
Script:Han
Direction:ltr

Detection Details

Language Code:zh
Detection Confidence:80%
Script Type:Han
HTML Lang Attribute:zh-CN
Text Length:2,759 chars
Detector Agreement:100%

Website Classification

Primary Category

social media network87% confidence
Type: static
Method: ml+structural

All Detected Categories

social media network
87%
technology software
78%
corporate business
69%
government public service
62%
forum community discussion
50%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
643.174.227.42Singapore
AS139341ACE
5103.80.133.93Seoul, Seoul, South Korea
AS205960Hdtidc Limited
549.71.39.36China
AS137697CHINATELECOM JiangSu YangZhou IDC networkdescr: YangZhouJiangsu Province, P.R.China.
5119.188.220.225China
AS4837CHINA UNICOM China169 Backbone
5240d:c010:74:3::b9Singapore
AS139341ACE
543.174.229.41Singapore
AS139341ACE
316--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T172C2B43209412BA71317E5CDD016BF27B5D78B58FCAB0C12AAF852DC5FE6E05F906A84

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:8NI+l3q7V4+YSixBe0Ad8o+RRtTWJwaSEkn1P1kKOw9/q:8N9l67V4+YSixBe0ASo+RR9W+GKOG/q

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:27334:rmwDEAsBQCgBNAMyFjQiaoJQKIFSQEHGhjYhqk1kqASiSQ4QFQ058+sDpZEpRRPEAkQAhIBigBVJBiQSSgFUjmAmAAQoBIwU

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:9d92908090f8ffff
Perceptual Hash:fc3c999b1899692c
Difference Hash:3336272624c3080a
Wavelet Hash:9df0808080f0ffff
Color Hash:#32d22d

Other Hashes

Crop Resistant:3336272624c3080a

Scan History

Scan history not available

Unable to load historical scan data