ScanMalware.com

Security Scan Report: fido-my-security.live-01.platform.bbva.com

Redirected to:
https://idp.live.global.platform.bbva.com/idp/profile/SAML2/POST/SSO?e...
Site favicon
Submitted: May 4, 2026, 6:36:10 PMCompleted: May 4, 2026, 6:37:24 PMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 2 domains to perform 28 HTTP transactions. The main domain is idp.live.global.platform.bbva.com and was registered NaN years ago.

Submitted URL: https://fido-my-security.live-01.platform.bbva.com

Effective URL: https://idp.live.global.platform.bbva.com/idp/profile/SAML2/POST/SSO?execution=e1s1Redirected

The Cisco Umbrella rank of the primary domain is #166,318 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 88%

7
Risk Score

The site impersonates BBVA with a login form, has a critical IDS malware alert and heavily obfuscated JavaScript, indicating a high‑risk phishing attempt.

Risk Factors
Low Cisco Umbrella ranking for a well‑known brand claim
Critical IDS alert indicating possible malware activity
Critical JavaScript obfuscation and dynamic code generation
Brand impersonation with credential collection
Suspicious subdomain structure (fido‑my‑security.live‑01.platform.bbva.com)
Domain age information unavailable

Details

Page Title

BBVA

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

finance banking

(29%)

Domain Information

The domain 'fido-my-security.live-01.platform.bbva.com' uses the commercial generic top-level domain (.com), featuring subdomain 'fido-my-security.live-01.platform'. Count 4 characters in 'bbva' with 1 vowel and three consonants. Splitting it apart reveals 2 words: bbv, a. Median word length is two characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://fido-my-security.live-01.platform.bbva.com

Page Load Overview

1.92s
Total Load Time
34
HTTP Requests
2
Domains
519 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:156 chars
Detector Agreement:100%

Website Classification

Primary Category

finance banking29% confidence
Type: spa
Method: ml+structural

All Detected Categories

finance banking
29%
social media
15%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
3423.197.143.45Frankfurt am Main, Hesse, Germany
AS16625Akamai Technologies, Inc.
341--

Detected Technologies6

X-UA-Compatible
100%
PasswordField
100%
AngularJS
50%
HSTS
40%
Akamai
40%
jQuery
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T176D14561EC14CD33516386B5A296D9AD62F9C15DCA23C41CB6FC0AE81FE7EC85E1AC42

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:GwdwOquofcEU9z9TtTlUZ5AYmdMEWqHJRA1MdL7jAQWAhCAr+bN:GwCBfcEU9z9TtTlUZ5Ax99IN

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:6374:ACCHgIbIEAFCABOQkwhAvEADJAGAEhB0CExxCQCGIAYBEAAGAQICTYQyEwbCgMyIK5CAgWIAaABgFAMNEQEChAQkaKMRgHiD

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:e7e7ffe7e7e7ffff
Perceptual Hash:b3333933398966cc
Difference Hash:4c4c684d4d687004
Wavelet Hash:03272727e4e4fcf0
Color Hash:#3a7857

Other Hashes

Crop Resistant:4c4c684d4d687004

Scan History

Scan history not available

Unable to load historical scan data