ScanMalware.com

Security Scan Report: hannibalny.gov

Submitted: Nov 25, 2025, 5:57:32 PMCompleted: Nov 25, 2025, 5:59:50 PMpubliccompleted
Loading additional data...

Summary

This website contacted 8 IPs in 2 countries across 3 domains to perform 23 HTTP transactions. The main domain is hannibalny.gov and was registered NaN years ago.

Submitted URL: https://hannibalny.gov/

AI Security Verdict

Confirmed Scam

Confidence: 95%

10
Risk Score

Confirmed phishing scam impersonating Chase; avoid and report.

Risk Factors
Brand impersonation / typosquatting
Newly registered domain (<90 days)
UNRANKED domain in Cisco Umbrella
Potential phishing site targeting users of Chase
Domain age information unavailable

Details

Page Title

Town of Hannibal, New York

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

government public service

(78%)

Domain Information

Within the United States government-restricted top-level domain (.gov), 'hannibalny.gov' is registered and has no subdomain. The second-level label 'hannibalny' is 10 characters long with three vowels and seven consonants. Word splitting yields 2 words: hannibal, ny. Median word length is five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://hannibalny.gov/

Page Load Overview

1.25s
Total Load Time
23
HTTP Requests
3
Domains
753 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:1,852 chars
Detector Agreement:100%

Website Classification

Primary Category

government public service78% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

government public service
78%
education learning
55%
government
48%
documentation technical
35%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
16209.126.31.115United States
AS36444NEXCESS-NET
218.158.212.228Frankfurt am Main, Hesse, Germany
AS16509AMAZON-02
2104.102.49.187Frankfurt am Main, Hesse, Germany
AS16625AKAMAI-AS
22a02:26f0:7100:7a2::2e03Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
22a02:26f0:7100:7aa::2e03Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
22a02:26f0:7100:7ad::2e03Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
22a02:26f0:7100:792::2e03Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
22a02:26f0:7100:79e::2e03Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
238--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1B3D2D777A1B5A0073B0ED7EEA411F32DA9937307CA51BB66B0FD30999A585F2007B02D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:UlTvE0zuPr3ZdqZUaAWkWSKWiO1G2Mrn8H5664CC99xEoEdCSH3:Uq04ZdapzjWiO1G28n8H565OldCs

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:30060:AAmAAE4EAAIF0LAUQsUDkgkgIWEFgscEgACXZKIQFABHoqhz5xpJAEgcQFwocuooMjU0I0ohgAUSAAGcAAAkCqBlCYDIjyRR

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Scan History

Scan history not available

Unable to load historical scan data