ScanMalware.com

Security Scan Report: whatsapp-plus.net

Redirected to:
https://www.whatsapp.com/
Site favicon
Submitted: Jun 3, 2026, 3:00:21 AMCompleted: Jun 3, 2026, 3:01:37 AMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 4 HTTP transactions. The main domain is whatsapp.com and was registered NaN years ago.

Submitted URL: https://whatsapp-plus.net

Effective URL: https://www.whatsapp.com/Redirected

The Cisco Umbrella rank of the primary domain is #517,534 of the top 1 million websites

AI Security Verdict

Moderate Risk

Confidence: 78%

5
Risk Score

The site mimics WhatsApp branding on a low‑ranked domain but only redirects to the real site and lacks malicious content; moderate risk due to brand impersonation.

Risk Factors
Brand impersonation via meta tags
Low Cisco Umbrella ranking for a claimed major brand
Use of a non‑official domain that redirects to the brand
Safety Factors
No forms collecting credentials or payments
No JavaScript malware or exfiltration behavior
Final destination is the legitimate WhatsApp website
Domain age over 17 years (well‑established)
Domain age information unavailable

Details

Page Title

WhatsApp | Secure and Reliable Free Private Messaging and Calling

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

The domain 'whatsapp-plus.net' uses the network infrastructure generic top-level domain (.net) with no subdomain. The registrable portion 'whatsapp-plus' spans 13 characters with three vowels and 9 consonants, along with 1 hyphen. It segments into four words: what, s, app, plus. Median word length comes out to 3.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://whatsapp-plus.net

Page Load Overview

2.16s
Total Load Time
65
HTTP Requests
4
Domains
1.5 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:4,478 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: spa
Method: structural

All Detected Categories

No categories detected

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
65157.240.0.13Frankfurt am Main, Hesse, Germany
AS32934Facebook, Inc.
651--

Detected Technologies2

HTTP/3
40%
Arkose Labs
30%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T173442BB29235E433021B67EE5131B305B4E7532EEB9617F4E1A85F75BBCAE783402069

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:M3TefPCmjPWp+MQzcnWh2x6cAx2k2Z+OjCY7XeyaFHp9pcY:nHCmjPWp+MQ2Wh2A2k2Z+OjX7G

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:253358:ChpCHBgQAqoLVBlQ0woKJoFiBiEAaGMBdYMlgaYQRAjNhAzgOgpCkAkFgoEYICUEgUZhHi4HB5Q0xHhgIAQWF+GyoCYUdgAg

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffcfc7c7ffffffff
Perceptual Hash:b331cccccc663333
Difference Hash:00180c1400000000
Wavelet Hash:3f1f030f00000000
Color Hash:#d2798f

Other Hashes

Crop Resistant:00180c1400000000

Scan History

Scan history not available

Unable to load historical scan data