ScanMalware.com

Security Scan Report: topgolf.net-chef.com

Redirected to:
https://topgolf.net-chef.com/standalone/modern.ct#Login
Site favicon
Submitted: May 8, 2026, 10:42:43 AMCompleted: May 8, 2026, 10:44:20 AMpubliccompleted
Loading additional data...

Summary

This website contacted 7 IPs in 2 countries across 7 domains to perform 34 HTTP transactions. The main domain is topgolf.net-chef.com and was registered NaN years ago.

Submitted URL: https://topgolf.net-chef.com

Effective URL: https://topgolf.net-chef.com/standalone/modern.ct#LoginRedirected

The Cisco Umbrella rank of the primary domain is #156,704 of the top 1 million websites

AI Security Verdict

Confirmed Scam

Confidence: 92%

9
Risk Score

The site impersonates Topgolf, hosts a credential‑stealing login form, and triggers critical malware alerts, confirming a phishing scam.

Risk Factors
Low Cisco Umbrella ranking for a brand‑impersonating domain
Credential collection form on unrelated domain
Critical IDS alerts indicating possible data exfiltration and command‑and‑control activity
Domain age information unavailable

Details

Page Title

Net-Chef | Crunchtime

Scan Type

public

Language

🇺🇸

English

(53% confidence)

Category

technology software

(55%)

Domain Information

You're looking at domain 'topgolf.net-chef.com' on the commercial generic top-level domain (.com), featuring subdomain 'topgolf'. The registrable portion 'net-chef' spans 8 characters with two vowels and five consonants, along with one hyphen. It segments into 2 words: net, chef. Expect 3.5 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://topgolf.net-chef.com

Page Load Overview

3.65s
Total Load Time
57
HTTP Requests
8
Domains
2.2 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:53%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:53%
Script Type:Latin
Text Length:206 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software55% confidence
Type: webapp
Method: ml+structural

All Detected Categories

technology software
55%
entertainment media
34%
corporate business
28%
documentation technical
26%
news media journalism
26%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
9104.18.21.211United States
AS13335Cloudflare, Inc.
835.201.109.167Kansas City, Missouri, United States
AS396982Google LLC
82.23.246.74Frankfurt am Main, Hesse, Germany
AS16625Akamai Technologies, Inc.
8104.16.79.73United States
AS13335Cloudflare, Inc.
8104.18.20.211United States
AS13335Cloudflare, Inc.
8142.251.14.139United States
AS15169Google LLC
888.221.170.15Frankfurt am Main, Hesse, Germany
AS16625Akamai Technologies, Inc.
577--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T14652E9673F6EE470C63549646132B98669BD922B6A01CC9AF48DC80C95F0FEE4933F17

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:mPqAmFb6SDzsYux+QR/P4uwCsOE52kVC98OE52kVOXerQqL0My:mPqAmFb6+zsY0+QR/P4vCsOE52UCyOEs

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:14478:SEEMCmAEDoIIUgUIIwZkQ2yMsGEg1ggJ2UawNOISRCQnZFiAxAbKaSKoLDCEBAMAEKICDwEhMBDAWBXAchwzEagMUOWI/MZM

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:f8ffffffffffffff
Perceptual Hash:d25a5a5a5a5a5a5a
Difference Hash:0002000000000000
Wavelet Hash:00070f0f0f0f0f0f
Color Hash:#406cbf

Other Hashes

Crop Resistant:0002000000000000

Scan History

Scan history not available

Unable to load historical scan data