ScanMalware.com

Security Scan Report: doosan.okta.com

Redirected to:
https://doosan.okta.com/app/global_redirect/0oa10bw2o38qWOGOO1t8/login
Site favicon
Submitted: May 14, 2026, 10:00:23 PMCompleted: May 14, 2026, 10:01:35 PMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 1 country across 2 domains to perform 15 HTTP transactions. The main domain is doosan.okta.com and was registered NaN years ago.

Submitted URL: https://doosan.okta.com

Effective URL: https://doosan.okta.com/app/global_redirect/0oa10bw2o38qWOGOO1t8/loginRedirected

The Cisco Umbrella rank of the primary domain is #1,118 of the top 1 million websitesTop 10K Site

AI Security Verdict

High Risk

Confidence: 92%

7
Risk Score

High risk site with credential‑harvesting form and critical IDS alert; likely a phishing page.

Risk Factors
Password‑only field suggests credential harvesting
Critical IDS alert indicating possible malware or data exfiltration
Highly obfuscated JavaScript code
Domain age information unavailable

Details

Page Title

doosan_default - Sign In

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(69%)

Domain Information

You're looking at domain 'doosan.okta.com' on the commercial generic top-level domain (.com) and includes subdomain 'doosan'. Its registrable label 'okta' stretches across 4 characters with two vowels and two consonants. Tokenizing the label suggests 2 words: ok, ta. The median word length lands at 2 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://doosan.okta.com

Page Load Overview

2.03s
Total Load Time
21
HTTP Requests
3
Domains
284 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:409 chars
Detector Agreement:50%

Website Classification

Primary Category

technology software69% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

technology software
69%
documentation technical
65%
adult content
49%
government public service
43%
healthcare medical
41%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1165.8.131.97United States
AS16509Amazon.com, Inc.
1015.197.253.65United States
AS16509Amazon.com, Inc.
212--

Detected Technologies2

PasswordField
100%
HSTS
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1BDE218D15D29C8DD16C45D88963B860A24429683C7E6EEC47AFCCEC6DFA4D0F741E64C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

384:IjkyI6pxbhwXroJ5XpaN5gNH6bimqpaN5gNH6bimQDS9paN5gNH6bimNPyXlSl6c:IjkyI6jhwk/XYEHUqYEHUz9YEHUhw3c

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:33281:AXsgYmFJgJAPAkYkowrRYRQRNUSo4RYJVe0owIoFeOCUSjgWIEGmhIBBAIihDyIDaGC8CKIJcEaCQMTCmgCBPwSMQMYlYIAg

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:3f7fffffffffffff
Perceptual Hash:800001030fffffff
Difference Hash:c080000000000000
Wavelet Hash:30b0f0f0f0f0f0f0
Color Hash:#acd279

Other Hashes

Crop Resistant:c080000000000000

Scan History

Scan history not available

Unable to load historical scan data