ScanMalware.com

Security Scan Report: citcokeycropfinances.com

Submitted: Apr 19, 2026, 7:35:22 PMCompleted: Apr 19, 2026, 7:36:45 PMpubliccompleted
Loading additional data...

Summary

This website contacted 11 IPs in 2 countries across 11 domains to perform 28 HTTP transactions. The main domain is citcokeycropfinances.com and was registered NaN years ago.

Submitted URL: https://citcokeycropfinances.com/wp-content/uploads/2019/08/GGL_TandC_3-17.html

AI Security Verdict

Confirmed Scam

Confidence: 92%

10
Risk Score

New, unranked site impersonates Facebook and uses a hacked WordPress path; classified as a confirmed brand‑impersonation scam.

Risk Factors
Very new, unregistered domain
Unranked in Cisco Umbrella top 1M
Brand impersonation on mismatched domain
Compromised WordPress site used for phishing
No legitimate content or functional forms
Domain age information unavailable

Details

Page Title

– Page not found

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

finance banking

(77%)

Domain Information

You're looking at domain 'citcokeycropfinances.com' on the commercial generic top-level domain (.com) with no subdomain. Its registrable label 'citcokeycropfinances' stretches across 20 characters holding seven vowels versus 13 consonants. Breaking it apart gives six words: c, it, co, key, crop, finances. Average segment length settles at 2.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://citcokeycropfinances.com/wp-content/uploads/2019/08/GGL_TandC_3-17.html

Page Load Overview

5.43s
Total Load Time
83
HTTP Requests
23
Domains
1.5 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:3,983 chars
Detector Agreement:100%

Website Classification

Primary Category

finance banking77% confidence
Type: spa
Method: ml+structural

All Detected Categories

finance banking
77%
corporate
35%
government public service
25%

Detected Features

Search
OG: website
Schema.org

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1364.20.37.43United States
AS19318Interserver, Inc
7142.251.127.95Germany
AS8075
72.21.20.141Germany
AS20940
7104.16.137.209Germany
AS46606
7172.67.142.245United States
AS13335Cloudflare, Inc.
7172.64.153.42United States
AS13335Cloudflare, Inc.
7142.251.208.14GermanyUnknown
7142.251.127.94GermanyUnknown
7162.214.158.165United States
AS46606Unified Layer
7150.171.22.12United States
AS8075Microsoft Corporation
8311--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1076474C628C4C4FE001FDA89F4CAE6115BD453B5EBC9C986B1F6C889CF8E9411AF7586

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:v/5hBZIOGQP+O2BIIp6Eyh/QjH8OqPsegjmovKy/MrlIRcG04:gPV

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:310763:AJxsiCnBiEALgDg8CECV8hAwOAjrUWCYKIKIIgLiE5wAnD0AEEog4ICAQDo7DPR6mUomchAiARA4mViDkhELBFBxeBCACoCh

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0000fffffffff9fb
Perceptual Hash:e316090cb6eb96e9
Difference Hash:2bd1080e0a8c3333
Wavelet Hash:0000e7ffefff8081
Color Hash:#879ac5

Other Hashes

Crop Resistant:2bd1080e0a8c3333,010121d1d1d12141

Scan History

Scan history not available

Unable to load historical scan data