ScanMalware.com

Security Scan Report: t.co

Redirected to: blob:https://forsalebyowner6.com/6b6f0234-1d1e-4fcb-9c88-58e691cc0f8c

Submitted: Oct 10, 2025, 7:22:13 AMCompleted: Oct 10, 2025, 7:23:12 AMpubliccompleted
Loading additional data...

Summary

This website contacted 15 IPs in 2 countries across 6 domains to perform 12 HTTP transactions. The main domain is .

Submitted URL: https://t.co/nDJJKGMlyJ

Effective URL: blob:https://forsalebyowner6.com/6b6f0234-1d1e-4fcb-9c88-58e691cc0f8cRedirected

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

Phishing page impersonating Capital One on a new unranked domain; confirmed scam.

Risk Factors
Brand impersonation of Capital One on a new, unranked domain
Blob URL scheme used to serve the login page
Disguised password fields that hide password entry
Unicode characters used to evade detection
Multiple credential‑harvesting forms on a freshly registered site
Domain age information unavailable

Details

Page Title

Sign In

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

finance banking

(79%)

Domain Information

Within the Colombian country-code top-level domain (.co), 't.co' is registered without a subdomain. The second-level label 't' is 1 characters long containing zero vowels alongside 1 consonant. Tokenizing the label suggests one word: t. Most frequently, 't' shows up in Chinese (Zhuyin). You may catch it in Catalan and Albanian as well. Overall, 't.co' reads as Chinese (Zhuyin) with single-word simplicity.

Screenshot

Security scan screenshot of https://t.co/nDJJKGMlyJ

Page Load Overview

27.61s
Total Load Time
12
HTTP Requests
6
Domains
47 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:1,870 chars
Detector Agreement:100%

Website Classification

Primary Category

finance banking79% confidence
Type: webapp
Method: ml+structural

All Detected Categories

finance banking
79%
documentation technical
53%
adult content
52%
corporate business
50%
technology software
44%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1235.157.26.135Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
067.20.76.247United States
AS46606UNIFIEDLAYER-AS-1
0151.101.130.137San Francisco, California, United States
AS54113FASTLY
0172.66.0.227United States
AS13335CLOUDFLARENET
0216.250.119.246United States
AS8560IONOS SE
063.176.8.218Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
02a04:4e42:200::649United States
AS54113FASTLY
02a05:d014:58f:6200::258Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
0151.101.2.137San Francisco, California, United States
AS54113FASTLY
02a04:4e42:600::649United States
AS54113FASTLY
1215--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1FF63433561E301BAA8B389D857EB2B463E849887D0C9D12477AC9BD84F838D5D47D3DC

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:0Ql0WSjLNMFv9vteVCrXWtcLRlyA7q86mLTlyA7KWtm:0QlfSjLNAVVe5

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:67514:B4EYLSDgCF4IQSqbAdUAQMAGQCWpRFWaARgypsRkweItYIFAI1kZABACalAogJSsyFOAAOZIdodCM1JAyiG4AMJVIgOqEIKA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:7fa4bde7c3ffcfff
Perceptual Hash:b38f8c27239d89b1
Difference Hash:e868704c4d2a2c00
Wavelet Hash:7f373c2c0424df00
Color Hash:#2d8386

Other Hashes

Crop Resistant:e868704c4d2a2c00

Scan History

Scan history not available

Unable to load historical scan data