Security Scan Report: usbank-online.netlify.app

Redirected to:
https://usbank-online.netlify.app/
Submitted: Jul 9, 2026, 12:45:41 PMCompleted: Jul 9, 2026, 12:49:38 PMpubliccompleted
Loading additional data...

Summary

This website contacted 8 IPs in 2 countries across 5 domains to perform 18 HTTP transactions. The main domain is usbank-online.netlify.app and was registered NaN years ago.

Submitted URL: http://usbank-online.netlify.app/

Effective URL: https://usbank-online.netlify.app/Redirected

AI Security Verdict

High Risk

Confidence: 85%

8
Risk Score

The site impersonates US Bank and harvests credentials via a login form on an unranked Netlify subdomain, indicating a high‑risk phishing scam.

Risk Factors
Brand impersonation of a major financial institution
Credential collection form on an unranked hosting subdomain
Unknown subdomain age (potentially brand‑new)
Lack of reputable domain reputation
Domain age information unavailable

Details

Page Title

US Bank - Premium Client Space

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

finance banking

(52%)

Domain Information

The domain name 'usbank-online.netlify.app' uses the application-focused generic top-level domain (.app), featuring subdomain 'usbank-online'. Count 7 characters in 'netlify' with two vowels and five consonants. Segmentation suggests three words: net, li, fy. Expect 2 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://usbank-online.netlify.app/

Page Load Overview

6.19s
Total Load Time
18
HTTP Requests
5
Domains
472 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:5,778 chars
Detector Agreement:80%

Website Classification

Primary Category

finance banking52% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

finance banking
52%
healthcare medical
26%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
4104.17.207.5Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
2104.17.25.14Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
235.157.26.135Aws · CLOUDFrankfurt am Main, Hesse, Germany
AS16509Amazon.com, Inc.
2172.217.208.95Google · CDNUnited States
AS15169Google LLC
2104.17.208.5Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
2104.17.24.14Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
2142.251.20.94Google · CDNUnited States
AS15169Google LLC
263.176.8.218Aws · CLOUDFrankfurt am Main, Hesse, Germany
AS16509Amazon.com, Inc.
188--

Detected Technologies3

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T132F3985061F325B34953A0E5BBA78B1F3BA0D117CA46C9087BED17D40FC7DA4E8A3689

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:8fFU0yFKcuYECXq0P9cd2WdKI4Q6Cmaw1:pqZd2WSQCR

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:172706:IiBUqQAAKQqRDBVhHYAJTMgCCOkDTvNhAAkBQlfqRkR+JBBKoyTZBIAoCiJAYFwAiaRkgYAXIERQqBQCFUoUJxliQloAkbmB

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:fd0000ffffff0000
Perceptual Hash:c84b4aebe2eaca4a
Difference Hash:4932313000009485
Wavelet Hash:ff0000ffffff0000
Color Hash:#d279c3

Scan History

Scan history not available

Unable to load historical scan data