ScanMalware.com

Security Scan Report: t.co

Redirected to: blob:https://ffingazzoa.za.com/a6ac1594-8253-4d4e-9235-334bcc3f27c9

Submitted: Oct 21, 2025, 8:45:09 PMCompleted: Oct 21, 2025, 8:45:42 PMpubliccompleted
Loading additional data...

Summary

This website contacted 15 IPs in 3 countries across 5 domains to perform 10 HTTP transactions. The main domain is .

Submitted URL: https://t.co/j7mMlw1WLF

Effective URL: blob:https://ffingazzoa.za.com/a6ac1594-8253-4d4e-9235-334bcc3f27c9Redirected

AI Security Verdict

Confirmed Scam

Confidence: 95%

9
Risk Score

High‑confidence phishing site harvesting credentials and payment data; avoid interaction.

Risk Factors
Credential harvesting forms on a newly registered, unranked domain
Hidden and disguised password fields to trick users
Collection of sensitive payment information on a suspicious site
Unicode evasion techniques in form fields
Brand impersonation without legitimate domain ownership
Domain age information unavailable

Details

Page Title

Sign In

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

finance banking

(56%)

Domain Information

You're looking at domain 't.co' on the Colombian country-code top-level domain (.co) while skipping any subdomain. Count 1 characters in 't' with zero vowels and one consonant. Segmentation suggests 1 word: t. The linguistic tilt is Chinese (Zhuyin) for 't'. Secondary signals appear in Catalan and Albanian.

Screenshot

Security scan screenshot of https://t.co/j7mMlw1WLF

Page Load Overview

8.52s
Total Load Time
10
HTTP Requests
5
Domains
105 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:1,502 chars
Detector Agreement:100%

Website Classification

Primary Category

finance banking56% confidence
Type: webapp
Method: ml+structural

All Detected Categories

finance banking
56%
adult content
40%
documentation technical
38%
government public service
38%
social media network
35%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
10167.88.162.184United Kingdom
AS198983'Tornado Datacenter GmbH & Co. KG'
063.176.8.218Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
035.157.26.135Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
0151.101.194.137San Francisco, California, United States
AS54113FASTLY
0192.232.219.78United States
AS46606UNIFIEDLAYER-AS-1
0162.159.140.229United States
AS13335CLOUDFLARENET
0151.101.2.137San Francisco, California, United States
AS54113FASTLY
02a05:d014:58f:6200::259Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
02a04:4e42::649United States
AS54113FASTLY
02a04:4e42:600::649United States
AS54113FASTLY
1015--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1FD43543661A341BADDB3CAC847EB2A463E849887E0C9D12477AC9AD44F838D5D47D3DC

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:e7FSF3FuWFzF+fs8utovi8utovWX9soTHgrCt1WtcL/plyA7qvE6mw:0Ql0WxMTv9vHi8Ct1WtcLRlyA7q86mw

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:57113:AAiWEZAG5VKgVCiChSWjABJgQiIBMAkSqQgDEIC4mGMuWDdUMBHlEzMVSylUKEFEgACwQBiZs4GyDiAgJcoRWYmABI5oRhEk

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:7fa5bde7c3ffcfff
Perceptual Hash:b38f8c27239d89b1
Difference Hash:e869704c4d2a2c00
Wavelet Hash:7f343c2c0424df0d
Color Hash:#a0e06c

Other Hashes

Crop Resistant:e869704c4d2a2c00

Scan History

Scan history not available

Unable to load historical scan data