ScanMalware.com

Security Scan Report: www.saa.gov.uk

Site favicon
Submitted: Dec 29, 2025, 12:57:24 PMCompleted: Dec 29, 2025, 12:58:28 PMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 1 country across 4 domains to perform 65 HTTP transactions. The main domain is saa.gov.uk and was registered NaN years ago.

Submitted URL: https://www.saa.gov.uk/fife/

The Cisco Umbrella rank of the primary domain is #887,104 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 92%

7
Risk Score

Site shows strong signs of a compromised WordPress site harvesting credentials; treat as phishing.

Risk Factors
Compromised WordPress site (potentially hacked for phishing)
Credential harvesting pattern: password field without username
Hidden password field used for search input
Domain age information unavailable

Details

Page Title

Fife – Scottish Assessors Association Sites

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

real estate property

(65%)

Domain Information

Within the United Kingdom country-code top-level domain (.gov.uk), 'www.saa.gov.uk' is registered with subdomain 'www'. Count 3 characters in 'saa' holding two vowels versus 1 consonant. Word splitting yields three words: s, a, a. Expect one character per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://www.saa.gov.uk/fife/

Page Load Overview

2.86s
Total Load Time
65
HTTP Requests
4
Domains
432 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:4,832 chars
Detector Agreement:100%

Website Classification

Primary Category

real estate property65% confidence
Type: spa
Method: ml+structural

All Detected Categories

real estate property
65%
government public service
62%
government
48%
documentation technical
35%
news media journalism
27%

Detected Features

Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
17172.217.23.99United States
AS15169
16172.217.18.10United States
AS54113
16151.101.1.229United States
AS54113FASTLY
16172.66.158.152United States
AS13335CLOUDFLARENET
654--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1874319F368EC853B516B46CDA070F72CDAE6D216C705D264B5FC53A85B91EAE09A330C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:HsSypgLTqKo2bqx6OOckJtiA8ZRXo1v3xqPXz6jOMuPYAXuDC4MYbWekGCY43FhP:HsLmLOKo2WfOckJtiA8ZRXo1v3xqPX8+

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:57674:wQQBoEi8huEAAgFmAFAFAagbRbhgpBwgiiEAQSGINYsiQAWIamsEQAwCCGZ5yRRxhRMeA2aUwIMBAECT+C1RggUCyACgCgYQ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffffc880ffffff00
Perceptual Hash:fe810d8177f2588d
Difference Hash:d8c610082ae93125
Wavelet Hash:7eff000088ffff00
Color Hash:#e08f6c

Other Hashes

Crop Resistant:d8c610082ae93125,48c8938080e40300,48c99e8181d1070b,2525212121410181

Scan History

Scan history not available

Unable to load historical scan data