ScanMalware.com

Security Scan Report: www.aldorlocal.gov

Redirected to: https://www.alabamainteractive.org/ador_reports/login_input.action

Submitted: Dec 11, 2025, 4:21:45 PMCompleted: Dec 11, 2025, 4:22:28 PMpubliccompleted
Loading additional data...

Summary

This website contacted 26 IPs in 2 countries across 10 domains to perform 35 HTTP transactions. The main domain is alabamainteractive.org and was registered NaN years ago.

Submitted URL: https://www.aldorlocal.gov/

Effective URL: https://www.alabamainteractive.org/ador_reports/login_input.actionRedirected

AI Security Verdict

High Risk

Confidence: 92%

9
Risk Score

High‑risk phishing site impersonating Alabama Department of Revenue

Risk Factors
Brand impersonation of a government agency on a non‑official domain
Credential harvesting form (username/password) on suspicious site
Multiple redirects (12) increasing likelihood of phishing redirection
Domain age information unavailable

Details

Page Title

ADOR Local Reports

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

government public service

(74%)

Domain Information

Within the United States government-restricted top-level domain (.gov), 'www.aldorlocal.gov' is registered, featuring subdomain 'www'. Count 10 characters in 'aldorlocal' split between four vowels and six consonants. It segments into 3 words: aldo, r, local. Median word length comes out to 4 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.aldorlocal.gov/

Page Load Overview

3.98s
Total Load Time
35
HTTP Requests
10
Domains
2.5 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:104 chars
Detector Agreement:33%

Website Classification

Primary Category

government public service74% confidence
Type: webapp
Method: ml+structural

All Detected Categories

government public service
74%
government
48%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1206.16.212.66United States
AS394572TYLERTECH-NIC1
118.172.112.75United States
AS16509AMAZON-02
1172.217.18.10United States
AS15169GOOGLE
1104.17.24.14United States
AS13335CLOUDFLARENET
1142.250.186.163United States
AS15169GOOGLE
1104.26.8.123United States
AS13335CLOUDFLARENET
1104.18.11.207United States
AS13335CLOUDFLARENET
1172.67.75.33United States
AS13335CLOUDFLARENET
1142.250.185.72United States
AS15169GOOGLE
118.172.112.18United States
AS16509AMAZON-02
3526--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1A5A171235CF65D76020380D66AF1BA097EA4994BD10AC584B8EDC3881FE2FDECD47A1D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

96:m+vPgiZMEBDTpYjYkusldXuUZ3BwSJxIHSR1Emse1tjU:DHgKlDFo7ltu4xwpHSRmmtS

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:4845:AISDBReEBoAAgBIIKZCABAAgREAAwgEBBAAANANAEEgQAJCEBAAEMAACQoxgUBA0AhMYyBBAAAKIBwomCJwIIQAlEFIgUGEA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00ffffffffffffff
Perceptual Hash:e3474f47474c4666
Difference Hash:420b08160c080000
Wavelet Hash:000080c2c3ffffff
Color Hash:#231f93

Other Hashes

Crop Resistant:420b08160c080000

Scan History

Scan history not available

Unable to load historical scan data