ScanMalware.com

Security Scan Report: t.co

Redirected to: blob:https://ramosrealtyla.com/83b43287-a4ab-46bb-a317-62d9687f73ce#

Site favicon
Submitted: Jan 6, 2026, 6:42:28 PMCompleted: Jan 6, 2026, 6:43:14 PMpubliccompleted
Loading additional data...

Summary

This website contacted 11 IPs in 3 countries across 11 domains to perform 16 HTTP transactions. The main domain is .

Submitted URL: https://t.co/Em0zkvhV7z

Effective URL: blob:https://ramosrealtyla.com/83b43287-a4ab-46bb-a317-62d9687f73ce#Redirected

The Cisco Umbrella rank of the primary domain is #1,176 of the top 1 million websitesTop 10K Site

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

Phishing page impersonating American Express; confirmed scam.

Risk Factors
Brand impersonation on a suspicious domain
Blob URL usage
Disguised password fields
Unicode character mixing for evasion
High number of password fields
Domain age information unavailable

Details

Page Title

Log in to My Account | American Express US

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

finance banking

(69%)

Domain Information

You're looking at domain 't.co' on the Colombian country-code top-level domain (.co) with no subdomain. The core label 't' covers 1 characters split between zero vowels and 1 consonant. Breaking it apart gives one word: t. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://t.co/Em0zkvhV7z

Page Load Overview

7.44s
Total Load Time
16
HTTP Requests
11
Domains
196 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:3,997 chars
Detector Agreement:100%

Website Classification

Primary Category

finance banking69% confidence
Type: webapp
Method: ml+structural+ocr_tiebreaker

All Detected Categories

finance banking
69%
government public service
69%
education learning
52%
corporate business
37%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
623.197.140.100Frankfurt am Main, Hesse, Germany
AS16625AKAMAI-AS
163.176.8.218Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
123.227.39.200Ottawa, Ontario, Canada
AS13335CLOUDFLARENET
1151.101.130.137United States
AS54113FASTLY
1151.101.194.137United States
AS54113FASTLY
1142.250.185.106United States
AS15169GOOGLE
172.167.34.78United States
AS398101GO-DADDY-COM-LLC
1172.66.0.227United States
AS13335CLOUDFLARENET
1192.254.232.40United States
AS46606UNIFIEDLAYER-AS-1
1104.17.24.14United States
AS13335CLOUDFLARENET
1611--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T15B042A1715A655251C6F2CEA4FE73E4D7A94F483C802C650F4ED8ACCAF97B81899A3CC

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:DdTO/YGu3iIob0mTbYkIOHLS0nRV+U1Y2AzEbtVcDrM3ZLhNS2kEO5Qw7qUreoiq:DdTOlGA0mTlLSiRV+cY3wbTuMQ5mwW7K

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:186540:hijSgW5ccQBQEMGuMXCUjBAw5sQvCGQJwoAhccCgEAJRoSKFjkBAIERCqowikgmggE8BVLIIHwSBuACVKIIAqCCCWXfoIGkp

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:N/A
Perceptual Hash:N/A
Difference Hash:N/A
Wavelet Hash:N/A
Color Hash:N/A

Other Hashes

Crop Resistant:N/A

Scan History

Scan history not available

Unable to load historical scan data