ScanMalware.com

Security Scan Report: www.onpointcu.com

Submitted: Mar 20, 2026, 8:02:20 AMCompleted: Mar 20, 2026, 8:03:10 AMpubliccompleted
Loading additional data...

Summary

This website contacted 8 IPs in 3 countries across 8 domains to perform 1 HTTP transaction. The main domain is onpointcu.com and was registered NaN years ago.

Submitted URL: https://www.onpointcu.com/blog/what-is-a-mortgage-loan-officer-and-how-to-choose-one/

The Cisco Umbrella rank of the primary domain is #183,348 of the top 1 million websites

AI Security Verdict

Moderate Risk

Confidence: 78%

4
Risk Score

Informational blog page from OnPoint Credit Union; low to moderate risk due to a suspicious external link and obfuscated scripts.

Risk Factors
External link to suspicious domain ipstack.com
Highly obfuscated JavaScript with eval() usage
Hidden password field (potentially deceptive)
Safety Factors
Established domain (>20 years old)
Login form posts credentials to same‑origin subdomain (secure.onpointcu.com)
No malicious YARA JavaScript patterns detected
No network IDS alerts
Page marked as og:type=article – informational content
Domain age information unavailable

Details

Page Title

What is a Mortgage Loan Officer? And how to choose one. — OnPoint

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

finance banking

(65%)

Domain Information

Domain 'www.onpointcu.com' uses the commercial generic top-level domain (.com) and includes subdomain 'www'. The second-level label 'onpointcu' is 9 characters long with 4 vowels and 5 consonants. Tokenizing the label suggests 3 words: on, point, cu. Median word length is two characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.onpointcu.com/blog/what-is-a-mortgage-loan-officer-and-how-to-choose-one/

Page Load Overview

5.27s
Total Load Time
225
HTTP Requests
45
Domains
7.7 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:17,683 chars
Detector Agreement:100%

Website Classification

Primary Category

finance banking65% confidence
Type: spa
Method: ml+structural

All Detected Categories

finance banking
65%
news/blog
50%
corporate
35%
technology software
31%
education learning
31%

Detected Features

Login Form
Search
Articles
OG: article
Schema.org

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
29192.0.54.4Germany
AS15169
28104.17.46.19United States
AS13335Cloudflare, Inc.
28142.251.141.136Ireland
AS62659
2834.197.248.129United States
AS29990
2823.67.132.240Frankfurt am Main, Hesse, Germany
AS16625Akamai Technologies, Inc.
28104.20.20.192United States
AS13335Cloudflare, Inc.
2818.66.102.53Unknown
AS8075
2818.172.114.101United States
AS16509Amazon.com, Inc.
2258--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T14304C7B384B555FA066F77D4327A738CBA67830AEB820FF15AFC515C4284A976C37188

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:c82GbCaLtqjUUywZ5dlT976ZggOu61QW6mI07E:cBaLtqjULwdbGggOun

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:187723:YTeQEAQkEwCBADYXJROYtEsDAxACaAQxIUmIGBJAwBuKwAxAYVMSQIABAGFDAQMiMCQlhBrwPoBrKANsUAdABgFpKUpjMGUV

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:fff191f1f1fb9999
Perceptual Hash:eec29595485b936a
Difference Hash:c4c7636305332333
Wavelet Hash:fff181f0f0998189
Color Hash:#962dd2

Other Hashes

Crop Resistant:c4c7636305332333,191b195b6b393a4c,3d3d3b1b1953c4d9,642c6cf474745575

Scan History

Scan history not available

Unable to load historical scan data