ScanMalware.com

Security Scan Report: href.li

Redirected to:
https://servicecentre.latitudefinancial.com.au/login?migration=true&ge...
Site favicon
Submitted: May 17, 2026, 2:07:19 AMCompleted: May 17, 2026, 2:08:57 AMpubliccompleted
Loading additional data...

Summary

This website contacted 26 IPs in 2 countries across 20 domains to perform 68 HTTP transactions. The main domain is servicecentre.latitudefinancial.com.au.

Submitted URL: https://href.li/?https://servicecentre.latitudefinancial.com.au/login?migration=true&gemid2=lfs-web&gemid2=lfs-web%3Ahome%3Ahome%3Aheader&_gl=1*13ijgge*_gcl_au*MTYwMDMwMDQ2Ni4xNzc4MTI3MjM2*_ga*MTY1NjM2MjU1LjE3NzgxMjcyMzU.*_ga_HN02VX7PXM*czE3NzgxNDE2MTckbzQkZzEkdDE3NzgxNDE2NDgkajI5JGwwJGgw*_ga_VZY6JWYT4Y*czE3NzgxNDE2MTgkbzQkZzEkdDE3NzgxNDE2NDgkajMwJGwwJGgw

Effective URL: https://servicecentre.latitudefinancial.com.au/login?migration=true&gemid2=lfs-web&gemid2=lfs-web%3Ahome%3Ahome%3Aheader&_gl=1*13ijgge*_gcl_au*MTYwMDMwMDQ2Ni4xNzc4MTI3MjM2*_ga*MTY1NjM2MjU1LjE3NzgxMjcyMzU.*_ga_HN02VX7PXM*czE3NzgxNDE2MTckbzQkZzEkdDE3NzgxNDE2NDgkajI5JGwwJGgw*_ga_VZY6JWYT4Y*czE3NzgxNDE2MTgkbzQkZzEkdDE3NzgxNDE2NDgkajMwJGwwJGgwRedirected

The Cisco Umbrella rank of the primary domain is #129,868 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 88%

7
Risk Score

Site shows strong malware indicators despite a legitimate‑looking final domain; avoid and report.

Risk Factors
Critical IDS alerts indicating malware activity
Highly obfuscated JavaScript
Unranked/low‑rank domain impersonating a well‑known brand
Use of a redirect service (href.li) to hide the true destination
External network calls to suspicious messenger service
Domain age information unavailable

Details

Page Title

Latitude Service Centre

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

finance banking

(48%)

Domain Information

The domain 'href.li' uses the .li country-code top-level domain while skipping any subdomain. Count 4 characters in 'href' holding 1 vowel versus three consonants. Tokenizing the label suggests 1 word: href. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://href.li/?https://servicecentre.latitudefinancial.com.au/login?migration=true&gemid2=lfs-web&gemid2=lfs-web%3Ahome%3Ahome%3Aheader&_gl=1*13ijgge*_gcl_au*MTYwMDMwMDQ2Ni4xNzc4MTI3MjM2*_ga*MTY1NjM2MjU1LjE3NzgxMjcyMzU.*_ga_HN02VX7PXM*czE3NzgxNDE2MTckbzQkZzEkdDE3NzgxNDE2NDgkajI5JGwwJGgw*_ga_VZY6JWYT4Y*czE3NzgxNDE2MTgkbzQkZzEkdDE3NzgxNDE2NDgkajMwJGwwJGgw

Page Load Overview

2.15s
Total Load Time
68
HTTP Requests
20
Domains
2.8 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:3,828 chars
Detector Agreement:75%

Website Classification

Primary Category

finance banking48% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

finance banking
48%
technology software
45%
documentation technical
34%
government public service
31%
adult content
29%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
18157.240.0.6Frankfurt am Main, Hesse, Germany
AS32934Facebook, Inc.
2143.204.181.43United States
AS16509Amazon.com, Inc.
2142.251.13.94United States
AS15169Google LLC
23.233.158.111Ashburn, Virginia, United States
AS14618Amazon.com, Inc.
291.235.134.131United States
AS30286ThreatMetrix Inc.
291.235.133.182United States
AS30286ThreatMetrix Inc.
2142.251.127.155United States
AS15169Google LLC
2143.204.181.67United States
AS16509Amazon.com, Inc.
2104.18.1.22United States
AS13335Cloudflare, Inc.
2142.251.127.154United States
AS15169Google LLC
6826--

Detected Technologies6

X-UA-Compatible
100%
HSTS
40%
Google Analytics
35%
Unpkg
20%
Tealium
20%
Facebook Pixel
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T153F25DA6625838315D071FC0B42DAB1B71AF606EEEF7CED4C3F8496627E6D998947C00

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:5QgQrGNlX2tDbvazfDYGFcHg7RZeXT9eO97u6Jhe7+7m72BBjrm+xJxlDYg3bhVx:2gfr4V7u6JhgAY6ht/jeYR

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:35853:FGGAgRQKdBAAFAw0e4EhdQAPBQaoyDAoBAHaGIKLjgCRrQAh0IQ02BBIISEcKpSCyJQQphwgMCnIBIMFtaqoAiAI4CZFQMgM

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:000c0e0e0e21ffff
Perceptual Hash:92126d6ded6de812
Difference Hash:03ccccdcdc43c5c5
Wavelet Hash:000c0e0e0e73ffff
Color Hash:#79d295

Other Hashes

Crop Resistant:03ccccdcdc43c5c5,888aa2c0ae2b8caa,33ccccccdc4c43c5

Scan History

Scan history not available

Unable to load historical scan data