ScanMalware.com

Security Scan Report: flysmf.gov

Submitted: Dec 9, 2025, 5:17:22 AMCompleted: Dec 9, 2025, 5:18:11 AMpubliccompleted
Loading additional data...

Summary

This website contacted 38 IPs in 3 countries across 17 domains to perform 73 HTTP transactions. The main domain is flysmf.gov and was registered NaN years ago.

Submitted URL: https://flysmf.gov/

AI Security Verdict

High Risk

Confidence: 88%

8
Risk Score

High‑risk phishing site impersonating Sacramento International Airport; do not trust or provide any data.

Risk Factors
Brand impersonation on an unranked, recently created domain
Unranked domain (not in Cisco Umbrella top 1M) claiming a well‑known airport brand
Suspicious .gov TLD for a non‑government airport entity
Domain age information unavailable

Details

Page Title

Sacramento International Airport (SMF)

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

government

(48%)

Domain Information

Domain 'flysmf.gov' uses the United States government-restricted top-level domain (.gov). The second-level label 'flysmf' is 6 characters long containing zero vowels alongside six consonants. Segmentation suggests 2 words: flys, mf. Median word length is 3 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://flysmf.gov/

Page Load Overview

11.67s
Total Load Time
73
HTTP Requests
17
Domains
2.0 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:4,069 chars
Detector Agreement:100%

Website Classification

Primary Category

government48% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

government
48%
government public service
27%
corporate
25%

Detected Features

Search
OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
36208.79.247.197Sacramento, California, United States
AS11901COSWAN
1184.24.77.146Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
1184.24.77.144Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
1142.250.185.100United States
AS15169GOOGLE
1104.18.40.68United States
AS13335CLOUDFLARENET
1142.250.185.131United States
AS15169GOOGLE
1216.239.32.36United States
AS15169GOOGLE
1157.240.0.35Frankfurt am Main, Hesse, Germany
AS32934FACEBOOK
1157.240.0.6Frankfurt am Main, Hesse, Germany
AS32934FACEBOOK
1184.24.77.156Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
7338--

Detected Technologies4

Amazon Web Services
50%
HSTS
40%
Apple MapKit JS
40%
Amazon S3
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T133A3A475019017766AD740EB7723BB1363EA101AE4E3B841B3FE5B84ABCBC416F24B59

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:nUuGCCrJaXzwVEj+PV71cs+WCTSoOMUsyR0ApIQKfH7:nNGij+RFyH7

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:102143:EEgEhAuGADQIV1FQIWYTkA0AAgAgMEIMJ4CNMhYk7AWBAqegQhPAGmmBQAJgwOjwDeAUQJILMC2YCgo1FABLCOymoEDIICDe

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ff040e000c0fffff
Perceptual Hash:9303ec7a39ec1393
Difference Hash:3eccdcd9d9dd2232
Wavelet Hash:ff000e000c07ffff
Color Hash:#79d2aa

Other Hashes

Crop Resistant:3eccdcd9d9dd2232,a292ea63531aa292,c7697bebeafff377

Scan History

Scan history not available

Unable to load historical scan data