ScanMalware.com

Security Scan Report: home.cards.citidirect.com

Redirected to: https://home.cards.citidirect.com/CommercialCard/login

Site favicon
Submitted: Oct 30, 2025, 1:27:32 PMCompleted: Oct 30, 2025, 1:28:12 PMpubliccompleted
Loading additional data...

Summary

This website contacted 37 IPs in 4 countries across 11 domains to perform 103 HTTP transactions. The main domain is home.cards.citidirect.com and was registered NaN years ago.

Submitted URL: https://home.cards.citidirect.com/

Effective URL: https://home.cards.citidirect.com/CommercialCard/loginRedirected

AI Security Verdict

Safe Website

Confidence: 95%

0
Risk Score

Site appears legitimate and safe; no phishing or malicious indicators detected.

Safety Factors
Established domain with decades of registration
Official Citi branding and URL structure
No external or payment forms present
Domain age information unavailable

Details

Page Title

Citi Commercial Cards

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

corporate business

(98%)

Domain Information

You're looking at domain 'home.cards.citidirect.com' on the commercial generic top-level domain (.com) with subdomain 'home.cards'. The core label 'citidirect' covers 10 characters containing 4 vowels alongside six consonants. Splitting it apart reveals two words: citi, direct. Expect five characters per word on average. 'citi' most strongly signals Romanian. You will also see it in Catalan and Italian contexts.

Screenshot

Security scan screenshot of https://home.cards.citidirect.com/

Page Load Overview

14.46s
Total Load Time
103
HTTP Requests
11
Domains
5.5 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:4,262 chars
Detector Agreement:100%

Website Classification

Primary Category

corporate business98% confidence
Type: webapp
Method: ml+structural

All Detected Categories

corporate business
98%
government public service
98%
finance banking
97%
documentation technical
95%
technology software
95%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
3154.73.40.157Dublin, Leinster, Ireland
AS16509AMAZON-02
223.212.202.137Frankfurt am Main, Hesse, Germany
AS16625AKAMAI-AS
223.39.65.143United States
AS6762TELECOM ITALIA SPARKLE S.p.A.
291.235.133.67United States
AS30286THM
263.140.62.236United States
AS16509AMAZON-02
234.255.69.137Dublin, Leinster, Ireland
AS16509AMAZON-02
223.36.162.199Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
291.235.132.130United States
AS30286THM
223.35.236.237Frankfurt am Main, Hesse, Germany
AS16625AKAMAI-AS
2104.18.32.137United States
AS13335CLOUDFLARENET
10337--

Detected Technologies5

X-UA-Compatible
100%
PasswordField
100%
HSTS
40%
Akamai
40%
OneTrust
20%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1B5C3E7B2F65830B913D7CDD671E2BE0E6135C8A1D20B4EEC9BA96A2C4FC1BE205D4754

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:0Imo/trtFt4B+rD+X1PswgyoZLtLsEru78Aer+C3Pa14fgZdcK2bP:sASPswgyoZLtLseeC3Pa14fgZdcK2bP

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:127735:+gQqiCT2VSKDE4ki6RUyRoAhAQqjFAIWg4kDALAISAF4Biu4QIABGUExdgAGJjUqaNAAyYRChPQJzBFI7KlUBSCRRdIqpo0Q

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Scan History

Scan history not available

Unable to load historical scan data