ScanMalware.com

Security Scan Report: t.co

Redirected to: blob:https://bang338.net/d914da83-5e07-49b0-aad4-d5ecbed00463#

Site favicon
Submitted: Jan 6, 2026, 8:39:20 PMCompleted: Jan 6, 2026, 8:40:01 PMpubliccompleted
Loading additional data...

Summary

This website contacted 11 IPs in 6 countries across 11 domains to perform 16 HTTP transactions. The main domain is .

Submitted URL: https://t.co/H6c605ZeTD

Effective URL: blob:https://bang338.net/d914da83-5e07-49b0-aad4-d5ecbed00463#Redirected

The Cisco Umbrella rank of the primary domain is #1,176 of the top 1 million websitesTop 10K Site

AI Security Verdict

High Risk

Confidence: 92%

9
Risk Score

Page is a high‑risk phishing site impersonating American Express.

Risk Factors
Use of blob: URL to hide true content source
Login forms with multiple password fields on suspicious domain
Obfuscated password fields (type=text) to trick users
Unicode characters mixed in form fields to evade detection
Brand spoofing of a major financial institution
Domain age information unavailable

Details

Page Title

Log in to My Account | American Express US

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

finance banking

(30%)

Domain Information

Domain 't.co' uses the Colombian country-code top-level domain (.co) without a subdomain. The second-level label 't' is 1 characters long with 0 vowels and 1 consonant. It segments into 1 word: t. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://t.co/H6c605ZeTD

Page Load Overview

3.22s
Total Load Time
16
HTTP Requests
11
Domains
270 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:3,997 chars
Detector Agreement:100%

Website Classification

Primary Category

finance banking30% confidence
Type: webapp
Method: ml+structural

All Detected Categories

finance banking
30%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
635.157.26.135Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
1142.250.185.234United States
AS15169GOOGLE
1151.101.2.146United States
AS54113FASTLY
1151.101.66.137United States
AS54113FASTLY
1151.101.2.137United States
AS54113FASTLY
184.53.167.84Netherlands
AS16625AKAMAI-AS
123.52.181.182Frankfurt am Main, Hesse, Germany
AS16625AKAMAI-AS
1185.22.186.83Turkey
AS34619Cizgi Telekomunikasyon Anonim Sirketi
1104.17.24.14United States
AS13335CLOUDFLARENET
1140.99.164.160São Paulo, São Paulo, Brazil
AS396356LATITUDE-SH
1611--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1FA042A1715A655251C6F2CEA4FE73E4D7A94F483C802C650F4ED8ACCAF97B81899A3CC

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:DdTO/YGu3iIob0mTbYkIOHLS0nRV+U1Y2AzEbtVcDrM3ZLhNS2kEO5Qw7qUr49iq:DdTOlGA0mTlLSiRV+cY3wbTuMQ5mwW9t

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:186572:ArlwKC2aAQCgUcWsURPDFAAoptCviGcxBgAUIJCJcCNQyQKVioAIATTFwg6IoRIEkAQrEJIIGwUi4RDTBAMASCOCWfcshSkI

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:N/A
Perceptual Hash:N/A
Difference Hash:N/A
Wavelet Hash:N/A
Color Hash:N/A

Other Hashes

Crop Resistant:N/A

Scan History

Scan history not available

Unable to load historical scan data