ScanMalware.com

Security Scan Report: enterpriseenrollment.co.mufg.jp

Redirected to: https://login.microsoftonline.com/organizations/oauth2/v2.0/authorize?client_id=c44b4083-3bb0-49c1-b47d-974e53cbdf3c&scope=https%3A%2F%2Fmanagement.core.windows.net%2F%2F.default%20openid%20profile%20offline_access&redirect_uri=https%3A%2F%2Fintune.microsoft.com%2Fauth%2Flogin%2F&client-request-id=019d435d-b4c5-7e22-b778-9b8bfd3c552f&response_mode=fragment&client_info=1&nonce=019d435d-b4c6-7988-b601-a9fce6a28237&state=eyJpZCI6IjAxOWQ0MzVkLWI0YzYtNzMzMC04Y2U5LTkwMzdkODk0NjhjYyIsIm1ldGEiOnsiaW50ZXJhY3Rpb25UeXBlIjoicmVkaXJlY3QifX0%3D&x-client-SKU=msal.js.browser&x-client-VER=4.21.0&response_type=code&code_challenge=9nGc4aEzAdCBAFzf6mw9HiKmtj1X1EjZos4tM33Y4TY&code_challenge_method=S256&site_id=501430&instance_aware=true&sso_reload=true

Submitted: Mar 31, 2026, 10:08:24 AMCompleted: Mar 31, 2026, 10:09:36 AMpubliccompleted
Loading additional data...

Summary

This website contacted 8 IPs in 5 countries across 9 domains to perform 1 HTTP transaction. The main domain is login.microsoftonline.com and was registered NaN years ago.

Submitted URL: https://enterpriseenrollment.co.mufg.jp

Effective URL: https://login.microsoftonline.com/organizations/oauth2/v2.0/authorize?client_id=c44b4083-3bb0-49c1-b47d-974e53cbdf3c&scope=https%3A%2F%2Fmanagement.core.windows.net%2F%2F.default%20openid%20profile%20offline_access&redirect_uri=https%3A%2F%2Fintune.microsoft.com%2Fauth%2Flogin%2F&client-request-id=019d435d-b4c5-7e22-b778-9b8bfd3c552f&response_mode=fragment&client_info=1&nonce=019d435d-b4c6-7988-b601-a9fce6a28237&state=eyJpZCI6IjAxOWQ0MzVkLWI0YzYtNzMzMC04Y2U5LTkwMzdkODk0NjhjYyIsIm1ldGEiOnsiaW50ZXJhY3Rpb25UeXBlIjoicmVkaXJlY3QifX0%3D&x-client-SKU=msal.js.browser&x-client-VER=4.21.0&response_type=code&code_challenge=9nGc4aEzAdCBAFzf6mw9HiKmtj1X1EjZos4tM33Y4TY&code_challenge_method=S256&site_id=501430&instance_aware=true&sso_reload=trueRedirected

The Cisco Umbrella rank of the primary domain is #95,087 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

Phishing login page impersonating Microsoft Azure; do not enter credentials and report the site.

Risk Factors
Cross‑origin credential form (email + password) to external Microsoft domain
Brand impersonation of Microsoft Azure on a non‑Microsoft domain
Highly obfuscated JavaScript code
Absence of legitimate site content
Domain age information unavailable

Details

Page Title

Sign in to Microsoft Azure

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(77%)

Domain Information

The domain 'enterpriseenrollment.co.mufg.jp' uses the Japanese country-code top-level domain (.jp) with subdomain 'enterpriseenrollment.co'. Count 4 characters in 'mufg' split between one vowel and three consonants. It segments into two words: muf, g. Median word length is two characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://enterpriseenrollment.co.mufg.jp

Page Load Overview

1.53s
Total Load Time
26
HTTP Requests
7
Domains
591 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:187 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software77% confidence
Type: webapp
Method: ml+structural

All Detected Categories

technology software
77%

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
513.107.246.45Netherlands
AS8075
3150.171.84.25United States
AS8075Microsoft Corporation
340.79.150.123IrelandUnknown
352.236.189.96GermanyUnknown
320.190.160.128SwedenUnknown
340.126.32.133UnknownUnknown
323.207.210.137Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
313.69.116.108UnknownUnknown
268--

Detected Technologies5

X-UA-Compatible
100%
PasswordField
100%
Meta-Refresh-Redirect
100%
HSTS
40%
Ghost
15%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1CF936BE67EB32937828655B5B4BA2D026F7A59038C4CCE70B19CCD842FEB74D8127617

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:eNEk8GLG2ON2G4J13zIoIyEk77gx2xpTvPoMmCBSEfyiKu9b1:AEk85NJ4J5IJ32RAdu9b1

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:91370:kAQFG7hRhAQYEACYDMQimsYAxgDZBMCwKCAABsAkhBAHmgrTOR0UJXiqgChAZBEMIcUU0KQ9ZCkJCCdwIwgYcCQECB+ABT4N

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:003e3f3f373fff00
Perceptual Hash:85d970f626d919e4
Difference Hash:c8e2d2d2e4cae6e7
Wavelet Hash:003a3b3f373f7700
Color Hash:#c59787

Other Hashes

Crop Resistant:c8e2d2d2e452e6e6,c6c7c3c3c3c6c7c6

Scan History

Scan history not available

Unable to load historical scan data