ScanMalware.com

Security Scan Report: gfnet.sharepoint.com

Redirected to: https://login.microsoftonline.com/7ec50e16-3787-4697-b086-795dd54b8c9a/oauth2/authorize?client%5Fid=00000003%2D0000%2D0ff1%2Dce00%2D000000000000&response%5Fmode=form%5Fpost&response%5Ftype=code%20id%5Ftoken&resource=00000003%2D0000%2D0ff1%2Dce00%2D000000000000&scope=openid&nonce=80CAE15579399DFF02F88543F27AE1C11717D11F915123DA%2DB1C512165A1DF24B07AED7091F1F809530E593AE5D57BB310D64ACC400BBCE87&redirect%5Furi=https%3A%2F%2Fgfnet%2Esharepoint%2Ecom%2F%5Fforms%2Fdefault%2Easpx&state=OD0w&claims=%7B%22id%5Ftoken%22%3A%7B%22xms%5Fcc%22%3A%7B%22values%22%3A%5B%22CP1%22%5D%7D%7D%7D&wsucxt=1&cobrandid=11bd8083%2D87e0%2D41b5%2Dbb78%2D0bc43c8a8e8a&client%2Drequest%2Did=58b603a2%2Da016%2D7000%2D4656%2De3bcf9264b44&sso_reload=true

Submitted: Mar 26, 2026, 8:17:49 AMCompleted: Mar 26, 2026, 8:19:01 AMpubliccompleted
Loading additional data...

Summary

This website contacted 8 IPs in 4 countries across 8 domains to perform 1 HTTP transaction. The main domain is login.microsoftonline.com and was registered NaN years ago.

Submitted URL: https://gfnet.sharepoint.com

Effective URL: https://login.microsoftonline.com/7ec50e16-3787-4697-b086-795dd54b8c9a/oauth2/authorize?client%5Fid=00000003%2D0000%2D0ff1%2Dce00%2D000000000000&response%5Fmode=form%5Fpost&response%5Ftype=code%20id%5Ftoken&resource=00000003%2D0000%2D0ff1%2Dce00%2D000000000000&scope=openid&nonce=80CAE15579399DFF02F88543F27AE1C11717D11F915123DA%2DB1C512165A1DF24B07AED7091F1F809530E593AE5D57BB310D64ACC400BBCE87&redirect%5Furi=https%3A%2F%2Fgfnet%2Esharepoint%2Ecom%2F%5Fforms%2Fdefault%2Easpx&state=OD0w&claims=%7B%22id%5Ftoken%22%3A%7B%22xms%5Fcc%22%3A%7B%22values%22%3A%5B%22CP1%22%5D%7D%7D%7D&wsucxt=1&cobrandid=11bd8083%2D87e0%2D41b5%2Dbb78%2D0bc43c8a8e8a&client%2Drequest%2Did=58b603a2%2Da016%2D7000%2D4656%2De3bcf9264b44&sso_reload=trueRedirected

The Cisco Umbrella rank of the primary domain is #66 of the top 1 million websitesTop 100 Site

AI Security Verdict

Low Risk

Confidence: 85%

3
Risk Score

Page contains a credential form but lacks strong malicious indicators; likely a legitimate Microsoft authentication flow.

Risk Factors
Login form collecting credentials
Cross‑origin credential submission
Safety Factors
Domain sharepoint.com is well‑established (age > 27 years, Cisco Umbrella rank 66)
No malicious Indicators of Compromise matches found
No JavaScript malware patterns detected
No network IDS alerts detected
Domain age information unavailable

Details

Page Title

Sign in to your account

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

The domain name 'gfnet.sharepoint.com' uses the commercial generic top-level domain (.com); it also runs on subdomain 'gfnet'. Its registrable label 'sharepoint' stretches across 10 characters containing 4 vowels alongside 6 consonants. Word splitting yields 2 words: share, point. Average segment length settles at five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://gfnet.sharepoint.com

Page Load Overview

1.42s
Total Load Time
32
HTTP Requests
6
Domains
649 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:109 chars
Detector Agreement:67%

Website Classification

Primary Category

unknown0% confidence
Type: webapp
Method: structural

All Detected Categories

No categories detected

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
420.190.160.2Ireland
AS8075
413.107.246.44United States
AS8075Microsoft Corporation
420.189.173.13GermanyUnknown
440.126.31.129Dublin, Leinster, Ireland
AS8075Microsoft Corporation
423.53.42.114Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
420.190.160.64Amsterdam, North Holland, Netherlands
AS8075Microsoft Corporation
413.107.213.44UnknownUnknown
413.107.136.10Redmond, Washington, United States
AS8075Microsoft Corporation
328--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T164835BE67FA31937C24A45B5B5B67E02AE3A69039888CD60F18CC9C82FF774D8527507

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:jY8GLG2Sydzy4+VxrnsoIyEk77gx2xpTvPoMmCBHEC1eiCheC:c8Xydzy4oxjsJ32RApwC

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:84569:CuqOEogWBUBSA0YEJETxBAZUISIBRA0yg5UMEglGiiVBC7PCQULwBGRBARAgGLQpqI4iRGJNpBTUVSVRTRsApAOEBU6MzEMM

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0000181818180000
Perceptual Hash:89d93366cc9999cc
Difference Hash:100cb2b2b2b24c31
Wavelet Hash:00003c3c3c3c0303
Color Hash:#c5878f

Other Hashes

Crop Resistant:3070607131001101,0000403034400010,100cb2b2b2b24c31

Scan History

Scan history not available

Unable to load historical scan data