ScanMalware.com

Security Scan Report: t.co

Redirected to: https://masukomu.onamaeweb.jp/active/max.co.il/total/

Submitted: Dec 3, 2025, 5:05:25 PMCompleted: Dec 3, 2025, 5:06:03 PMpubliccompleted
Loading additional data...

Summary

This website contacted 11 IPs in 4 countries across 6 domains to perform 7 HTTP transactions. The main domain is masukomu.onamaeweb.jp.

Submitted URL: https://t.co/26mEUNR964

Effective URL: https://masukomu.onamaeweb.jp/active/max.co.il/total/Redirected

The Cisco Umbrella rank of the primary domain is #1,176 of the top 1 million websitesTop 10K Site

AI Security Verdict

High Risk

Confidence: 92%

9
Risk Score

High‑risk phishing site collecting credit‑card details

Risk Factors
Payment data collection on a low‑reputation, likely new domain
Possible brand impersonation (MAX) on an unrelated domain
Redirect chain from t.co to an untrusted domain
Domain not listed in Cisco Umbrella top 1 M
Domain age information unavailable

Details

Page Title

MAX - אימות כרטיס

Scan Type

public

Language

🇮🇱

HE

(80% confidence)

Category

finance banking

(88%)

Domain Information

Domain 't.co' uses the Colombian country-code top-level domain (.co) while skipping any subdomain. The core label 't' covers 1 characters holding 0 vowels versus 1 consonant. It segments into one word: t. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://t.co/26mEUNR964

Page Load Overview

1.34s
Total Load Time
7
HTTP Requests
6
Domains
29 KB
Total Size

Language Analysis

Primary Language

🇮🇱Hebrew
Code: he
Confidence:80%
Script:Hebrew
Direction:rtl

Detection Details

Language Code:he
Detection Confidence:80%
Script Type:Hebrew
HTML Lang Attribute:he
Text Length:630 chars
Detector Agreement:50%

Website Classification

Primary Category

finance banking88% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

finance banking
88%
corporate business
43%
adult content
36%
e-commerce
20%

Detected Features

Payment

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2157.120.209.24Japan
AS58791GMO Internet Group, Inc.
1172.66.0.227United States
AS13335CLOUDFLARENET
1142.250.185.238United States
AS15169GOOGLE
195.100.158.35Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
1104.21.83.69United States
AS13335CLOUDFLARENET
188.218.117.153Tel Aviv, Tel Aviv, Israel
AS209622uPress Inc
095.100.158.41Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
0172.67.216.92United States
AS13335CLOUDFLARENET
02a02:26f0:1700:d::1737:6e9eFrankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
02a02:26f0:1700:d::1737:6e89Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
711--

Detected Technologies3

HSTS
40%
Cloudflare Bot Management
40%
Cloudflare
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1DFA2209A9AEB0F130A13A4755FB6C1056BA488179D04E8147F9C214C7F9BACF6DF278C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:2mlWoFz7EYinivi8wi6ibjfuiKiIiPhZL2Ei1iFixiDisusqxypiki8i9IiOi/iA:hlWoFz41iq8NjbbzlPf25k04Disusqxv

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:21731:LgcRSEyg1gAsQIU6vMEykdhxugBiCqUQACFEQwE0QsAcVBBIBwbTAh7DxIKQQoScQjJEGSHSXk0qJoAEiKwZWCBoJFwDVQD7

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00fefafafbfbf3f3
Perceptual Hash:ed53642a4a6c5b6a
Difference Hash:0002020202020602
Wavelet Hash:00fac2f2fbc3c3c2
Color Hash:#361f93

Other Hashes

Crop Resistant:0002020202020602

Scan History

Scan history not available

Unable to load historical scan data