ScanMalware.com

Security Scan Report: tricounties.twatech.com

Redirected to: blob:https://rfccolombia.org/f946af61-8b4d-42de-bb1d-c8fdba656339

Submitted: Jan 26, 2026, 7:41:08 PMCompleted: Jan 26, 2026, 7:42:16 PMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 1 country across 4 domains to perform 7 HTTP transactions. The main domain is .

Submitted URL: https://tricounties.twatech.com/link.html

Effective URL: blob:https://rfccolombia.org/f946af61-8b4d-42de-bb1d-c8fdba656339Redirected

AI Security Verdict

High Risk

Confidence: 88%

8
Risk Score

Likely credential‑harvesting phishing site; do not submit any login information.

Risk Factors
Hidden password fields
Disguised password field (type=text with password placeholder)
Unicode evasion in form inputs
Unranked, unknown‑age domain
Multiple redirects to a different domain
Domain age information unavailable

Details

Page Title

Secure File Access

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(62%)

Domain Information

The domain 'tricounties.twatech.com' uses the commercial generic top-level domain (.com); it also runs on subdomain 'tricounties'. The registrable portion 'twatech' spans 7 characters holding 2 vowels versus 5 consonants. Segmentation suggests two words: twa, tech. Average segment length settles at 3.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://tricounties.twatech.com/link.html

Page Load Overview

1.50s
Total Load Time
9
HTTP Requests
4
Domains
46 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:309 chars
Detector Agreement:67%

Website Classification

Primary Category

technology software62% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

technology software
62%
download file sharing
51%
documentation technical
30%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
3192.185.57.101Ashburn, Virginia, United States
AS31898Oracle Corporation
2192.254.185.180United States
AS46606Unified Layer
2185.15.59.240United States
AS14907Wikimedia Foundation Inc.
2151.101.66.137United States
AS46606
94--

Detected Technologies2

PasswordField
100%
WordPress
25%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1EA32934B26FB04B57603E1B837D797443951A1235A0AC8683F9CA74DDF4AE42A9B33CC

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:Ek1OmlFAFt/bwRJEzORUucUZIpcUtJKWq6yvRAUzVtq6Q00X:TFAFbz0UucUZQcUa9zfq6U

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:11415:CSIIJq2AJAjNAgSEETn2ESYAgBXGwFYIgEMBGBtBChINyRoCMhALOIEgBZgogTQMQVIiQHRCgRFMFMxaJUg4vmQAGiNSrBAI

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:7fe7ffffa5e7ffe7
Perceptual Hash:b38ccc3333cc6633
Difference Hash:800830224c4c3008
Wavelet Hash:0f0f1f1fc0c0f0f0
Color Hash:#53aca3

Other Hashes

Crop Resistant:800830224c4c3008

Scan History

Scan history not available

Unable to load historical scan data