ScanMalware.com

Security Scan Report: www.aldorlocal.gov

Redirected to: https://www.alabamainteractive.org/ador_reports/login_input.action

Submitted: Oct 4, 2025, 1:11:08 PMCompleted: Oct 4, 2025, 1:11:42 PMpubliccompleted
Loading additional data...

Summary

This website contacted 29 IPs in 1 country across 10 domains to perform 35 HTTP transactions. The main domain is alabamainteractive.org and was registered NaN years ago.

Submitted URL: https://www.aldorlocal.gov/

Effective URL: https://www.alabamainteractive.org/ador_reports/login_input.actionRedirected

AI Security Verdict

High Risk

Confidence: 88%

8
Risk Score

The site mimics the Alabama Department of Revenue on an unrelated domain and likely harvests credentials.

Risk Factors
Brand impersonation
Excessive redirects
Domain mismatch (.gov → .org)
Credential‑harvesting form
Unranked domain with high‑profile brand
Domain age information unavailable

Details

Page Title

ADOR Local Reports

Scan Type

public

Language

🇺🇸

English

(70% confidence)

Category

government public service

(75%)

Domain Information

The domain 'www.aldorlocal.gov' uses the United States government-restricted top-level domain (.gov), featuring subdomain 'www'. The second-level label 'aldorlocal' is 10 characters long split between 4 vowels and six consonants. Splitting it apart reveals 3 words: aldo, r, local. Average segment length settles at 4 characters. 'aldo' is most common in Chinese (Zhuyin) usage. Usage also turns up in Portuguese and Portuguese (Brazil) contexts.

Screenshot

Security scan screenshot of https://www.aldorlocal.gov/

Page Load Overview

1.51s
Total Load Time
35
HTTP Requests
10
Domains
2.5 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:70%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:70%
Script Type:Latin
HTML Lang Attribute:en
Text Length:104 chars
Detector Agreement:100%

Website Classification

Primary Category

government public service75% confidence
Type: webapp
Method: ml+structural

All Detected Categories

government public service
75%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
7104.18.11.207United States
AS13335CLOUDFLARENET
1142.250.186.67United States
AS15169GOOGLE
163.241.205.17United States
AS393360TYLERTECH-NIC2
118.172.112.28United States
AS16509AMAZON-02
1104.17.25.14United States
AS13335CLOUDFLARENET
1172.217.18.10United States
AS15169GOOGLE
1142.250.184.200United States
AS15169GOOGLE
1206.16.212.66United States
AS394572TYLERTECH-NIC1
1104.26.8.123United States
AS13335CLOUDFLARENET
118.172.112.18United States
AS16509AMAZON-02
3529--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T16EA171235CF65D76020380D66AF1BA097EA49947D10AC584B8EDC3880FE2FDECD47A1D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

96:m+vPgiZMEBDTpYjYkusldXuUZ3BwSJxIHSR1Oimse1tjU:DHgKlDFo7ltu4xwpHSRNmtS

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:4845:AISDBReEBIAAABIIKZCABAAgREACwgEBBAAANANAEEgQAJCEBAAEMAACQoxgUBA0AhMYyBBQAAKIBwomCJgIIQAkEFIgUGEA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00ffffffffffffff
Perceptual Hash:e3474f47474c4666
Difference Hash:420b08160c080000
Wavelet Hash:000080c2c3ffffff
Color Hash:#9ed22d

Other Hashes

Crop Resistant:420b08160c080000

Scan History

Scan history not available

Unable to load historical scan data