Security Scan Report: sfr.cco.sa

Site favicon
Submitted: Dec 11, 2025, 3:14:53 PMCompleted: Dec 11, 2025, 3:17:52 PMpubliccompleted
Loading additional data...

Summary

This website contacted 10 IPs in 4 countries across 5 domains to perform 27 HTTP transactions. The main domain is sfr.cco.sa.

Submitted URL: http://sfr.cco.sa/

AI Security Verdict

Low Risk

Confidence: 85%

2
Risk Score

Site appears legitimate; circular redirect is a minor concern.

Risk Factors
Circular redirect detected (potential URL manipulation)
Safety Factors
Official‑looking government branding
Absence of credential or payment collection forms
No malicious Indicators of Compromise identified
Use of a country‑code TLD (.sa) commonly associated with legitimate Saudi sites
Domain age information unavailable

Details

Page Title

أبشر سفر | Absher Safar

Scan Type

public

Language

🇸🇦

Arabic

(80% confidence)

Category

social media network

(83%)

Domain Information

Within the Saudi country-code top-level domain (.sa), 'sfr.cco.sa' is registered and includes subdomain 'sfr'. Count 3 characters in 'cco' split between one vowel and two consonants. Tokenizing the label suggests two words: c, co. Expect 1.5 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://sfr.cco.sa/

Page Load Overview

10.74s
Total Load Time
27
HTTP Requests
5
Domains
373 KB
Total Size

Language Analysis

Primary Language

🇸🇦Arabic
Code: ar
Confidence:80%
Script:Arabic
Direction:rtl

Detection Details

Language Code:ar
Detection Confidence:80%
Script Type:Arabic
HTML Lang Attribute:ar
Text Length:1,893 chars
Detector Agreement:60%

Website Classification

Primary Category

social media network83% confidence
Type: static
Method: ml+structural

All Detected Categories

social media network
83%
technology software
47%
news media journalism
43%
finance banking
42%
government public service
34%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2193.47.102.45Saudi Arabia
AS35338Ministry of Interior
2142.250.185.202United States
AS15169GOOGLE
265.108.45.175Helsinki, Uusimaa, Finland
AS24940Hetzner Online GmbH
2104.18.17.205United States
AS13335CLOUDFLARENET
2142.250.185.99United States
AS15169GOOGLE
22606:4700::6812:11cdUnited States
AS13335CLOUDFLARENET
22a00:1450:4001:829::200aFrankfurt am Main, Hesse, Germany
AS15169GOOGLE
22606:4700::6812:10cdUnited States
AS13335CLOUDFLARENET
22a00:1450:4001:811::2003Frankfurt am Main, Hesse, Germany
AS15169GOOGLE
2104.18.16.205United States
AS13335CLOUDFLARENET
2710--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T16DC2E9F6924C653FA107C7DCD2327338B5BB21E7E70B5510E1990769C6C2D8AE82F5A8

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:ro2D9gFZVhduSU/tC7hGcjTMqoSkD9gFZ0NEV22Aies:rlD98VhQSU/tC7hG4IqohD98eees

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:27375:QJGhiRQ7BFKASBCCIK7BAMhQiA4DqjDhBQwFGsAiakXgcDyR1EgCGAggVCCAHKYQ2EmQyI4gQ6AgQQspMgihAJEhBgEViwES

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:f7000000ffffffff
Perceptual Hash:ee66aca6a6a66624
Difference Hash:e500140100531b13
Wavelet Hash:11000000ffffffdd
Color Hash:#87b6c5

Other Hashes

Scan History

Scan history not available

Unable to load historical scan data