ScanMalware.com

Security Scan Report: www.investni.com

Redirected to:
https://www.investni.com/
Site favicon
Submitted: Jun 10, 2026, 11:21:00 AMCompleted: Jun 10, 2026, 11:21:57 AMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 2 countries across 4 domains to perform 2 HTTP transactions. The main domain is investni.com and was registered NaN years ago.

Submitted URL: http://www.investni.com

Effective URL: https://www.investni.com/Redirected

AI Security Verdict

Moderate Risk

Confidence: 72%

5
Risk Score

The site shows strong phishing signs (disguised password field) despite its age; treat as credential phishing and avoid.

Risk Factors
Obfuscated JavaScript (high entropy, base64 encoding)
Unicode characters mixed in form fields
Login form with hidden password field
Safety Factors
Domain age > 25 years (well‑established)
No Indicators of Compromise matches
No malicious YARA patterns or IDS alerts
Established domain (9216 days old) with no strong malicious indicators — risk clamped from 7 to 5
Domain age information unavailable

Details

Page Title

Invest Northern Ireland | The Regional Economic Development Agency for Northern Ireland

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

government

(80%)

Domain Information

The domain name 'www.investni.com' uses the commercial generic top-level domain (.com) with subdomain 'www'. The registrable portion 'investni' spans 8 characters split between 3 vowels and 5 consonants. It segments into two words: invest, ni. The median word length lands at four characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://www.investni.com

Page Load Overview

7.01s
Total Load Time
217
HTTP Requests
10
Domains
3.0 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:9,701 chars
Detector Agreement:100%

Website Classification

Primary Category

government80% confidence
Type: spa
Method: structural

All Detected Categories

government
80%

Detected Features

Search
Schema.org

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
55146.75.123.52Frankfurt am Main, Hesse, Germany
AS54113Fastly, Inc.
54142.251.150.119United States
AS15169Google LLC
54142.251.14.97United States
AS15169Google LLC
54104.17.208.5United States
AS13335Cloudflare, Inc.
2174--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1D644B64339B0272AD6D38789A662B9A9B550988FFE3348CDF15C53788FCDFE14D12609

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:JC+N85sbJRxNubVShGHNGU/vAbPiZ68mDL1eyzqrRUFc3VY1AyvvoS5OAW1RQPQE:JDNnd4qC9qF

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:261109:YpJQIQEFRIQAwBsDCYgCPGBAdEMwl0qg4KEARKB0wzInIkgDQLoi5wIKtBEJZpCIAF4ojQyJGIUEoUALCggAARCjghYYBTDF

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ff010103dbffffbf
Perceptual Hash:a92196d4dcc596d9
Difference Hash:2fcfcf17336a2239
Wavelet Hash:8701010381ffff9f
Color Hash:#b76ce0

Other Hashes

Crop Resistant:2fcfcf17336a2239,46e6c6c6e6c6d725,c046c4c446c429b3

Scan History

Scan history not available

Unable to load historical scan data