ScanMalware.com

Security Scan Report: bristobanco.com

Redirected to: https://bristobanco.com/index-2.html

Submitted: Dec 7, 2025, 4:57:31 AMCompleted: Dec 7, 2025, 4:58:44 AMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 3 countries across 3 domains to perform 130 HTTP transactions. The main domain is bristobanco.com and was registered NaN years ago.

Submitted URL: http://bristobanco.com/index-2.html

Effective URL: https://bristobanco.com/index-2.htmlRedirected

AI Security Verdict

High Risk

Confidence: 88%

8
Risk Score

High‑risk phishing site impersonating Fibank; do not provide credentials.

Risk Factors
Credential harvesting login form
Brand impersonation (Fibank) on an unrelated domain
Low legitimacy signals despite being a banking‑themed template
Domain age information unavailable

Details

Page Title

Fibank - Banking And Finnance HTML5 Template

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

finance banking

(92%)

Domain Information

Within the commercial generic top-level domain (.com), 'bristobanco.com' is registered while skipping any subdomain. Count 11 characters in 'bristobanco' containing 4 vowels alongside 7 consonants. Tokenizing the label suggests 3 words: bris, to, banco. Median word length is four characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://bristobanco.com/index-2.html

Page Load Overview

0.49s
Total Load Time
130
HTTP Requests
3
Domains
1.1 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:7,487 chars
Detector Agreement:100%

Website Classification

Primary Category

finance banking92% confidence
Type: webapp
Method: ml+structural

All Detected Categories

finance banking
92%
adult content
46%
cryptocurrency blockchain
38%
government public service
30%
forum
20%

Detected Features

Search
OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
12651.255.82.237France
AS16276OVH SAS
262a00:1450:4001:801::2003Frankfurt am Main, Hesse, Germany
AS15169GOOGLE
262a00:1450:4001:829::200aFrankfurt am Main, Hesse, Germany
AS15169GOOGLE
2216.58.212.131United States
AS15169GOOGLE
1142.250.186.170United States
AS15169GOOGLE
1305--

Detected Technologies4

X-UA-Compatible
100%
Open-Graph-Protocolvwebsite
100%
Modernizrv3.5.0.min
100%
JQueryv3.5.1
100%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1DA731D1090CD1C3F051752D624247F9660DF8F32DA2798A9F2FB036667D7E81A95B4B3

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:iuTVTbZtFSNE3kIgNqC0LjXQN8GVqCmcYenGSkB+/LFS:iQtFP3hgQCQQKGcxc1GVB+/LFS

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:74447:4GKe6mUCEdgOIgE4EQsxBBAegAtmgABGgGkEdtFP4gJACJbEBCSH4pghgEFgwJACEaACqQCABtD1LNcCBCKwGVQKcgJXIioi

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Scan History

Scan history not available

Unable to load historical scan data