ScanMalware.com

Security Scan Report: curo.ziphq.com

Redirected to: https://curo.ziphq.com/login

Submitted: Mar 14, 2026, 2:44:31 AMCompleted: Mar 14, 2026, 2:45:51 AMpubliccompleted
Loading additional data...

Summary

This website contacted 11 IPs in 2 countries across 11 domains to perform 1 HTTP transaction. The main domain is curo.ziphq.com and was registered NaN years ago.

Submitted URL: https://curo.ziphq.com

Effective URL: https://curo.ziphq.com/loginRedirected

The Cisco Umbrella rank of the primary domain is #153,401 of the top 1 million websites

AI Security Verdict

Low Risk

Confidence: 92%

2
Risk Score

Legitimate Zip login page; no malicious activity detected.

Risk Factors
Presence of a credential login form
Safety Factors
Long‑standing domain (>16 years)
Brand name in meta tags matches the domain
No malicious Indicators of Compromise
No suspicious redirects or URL manipulation
No cross‑origin credential exfiltration
Domain age information unavailable

Details

Page Title

Zip - Modern Spend Approvals

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(87%)

Domain Information

Within the commercial generic top-level domain (.com), 'curo.ziphq.com' is registered and includes subdomain 'curo'. Its registrable label 'ziphq' stretches across 5 characters split between 1 vowel and 4 consonants. Breaking it apart gives two words: zip, hq. Median word length is 2.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://curo.ziphq.com

Page Load Overview

5.68s
Total Load Time
56
HTTP Requests
18
Domains
726 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:109 chars
Detector Agreement:50%

Website Classification

Primary Category

technology software87% confidence
Type: webapp
Method: ml+structural

All Detected Categories

technology software
87%
documentation technical
52%
government public service
42%
finance banking
31%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
6142.251.127.84United States
AS15169Google LLC
5146.75.121.55Frankfurt am Main, Hesse, Germany
AS54113Fastly, Inc.
5104.16.79.73United States
AS396982
5142.251.127.104United States
AS13335
53.212.128.202United States
AS14618
552.218.185.219United States
AS16509
5172.66.40.64United States
AS13335Cloudflare, Inc.
535.190.88.7United States
AS396982Google LLC
53.174.47.131United States
AS16509Amazon.com, Inc.
5172.66.43.192United States
AS13335Cloudflare, Inc.
5611--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1CB23843A8436E42C425FA4E8E4997E80D60393279A065BF0F29C41FCDBC4F9C6ADB755

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:B9W4ZWRWGSZxZyW3ZoMz9BxKQlngR+geU5Sshh5fJutnUSifV6GRykhcvbFyFXMq:BOABAdR+i4shhtJuutRCbQJ2pKF

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:46813:AAyZAAhXAEgo8QgTR0JMIKoQBBN1BXJjsJEgxFMiAgA7GIDkARFGkEABdIXrBKggFkTOg1VIEABQCRMQrgEQQOeZBIIsGABI

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ff00181818181800
Perceptual Hash:88a232f7b3cd83cc
Difference Hash:8d33b3b3b3b3b30d
Wavelet Hash:ff193d3d3c3c3800
Color Hash:#a787c5

Other Hashes

Crop Resistant:8d33b3b3b3b3b30d,e88e964c80331780,4db2b2b2b2b2b24d

Scan History

Scan history not available

Unable to load historical scan data