Security Scan Report: bctarget.adminportal.union.dev

Redirected to:
https://login.microsoftonline.com/f692aa18-06ef-4816-8eb3-82e35fd0eec9...
Submitted: Apr 19, 2026, 6:07:20 PMCompleted: Apr 19, 2026, 6:08:29 PMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 4 countries across 5 domains to perform 22 HTTP transactions. The main domain is login.microsoftonline.com and was registered NaN years ago.

Submitted URL: https://bctarget.adminportal.union.dev/Members/Index

Effective URL: https://login.microsoftonline.com/f692aa18-06ef-4816-8eb3-82e35fd0eec9/oauth2/v2.0/authorize?client_id=b5b27892-ac62-4999-9f9f-4ece96ec127d&redirect_uri=https%3A%2F%2Fbctarget.adminportal.union.dev%2Fsignin-oidc&response_type=code&scope=openid%20profile%20offline_access%20api%3A%2F%2F8b2f41f8-7ff0-4174-8ffb-deb506f31344%2FUnionsCanadaAdminPortal&code_challenge=dja4uty8fi5Fo7hJuQaZE4sZhVAUzDsd8dlK4AgN6-U&code_challenge_method=S256&response_mode=form_post&nonce=639122188429041926.OGY3ZGEzYTYtMjk0MS00ZTdmLWE4YWEtOTJjOTg3YWFmNDNmOTJkYjY1MjgtODgyYy00ZDBhLTg1ZTAtNDBhZjBiMTc1MWJl&client_info=1&x-client-brkrver=IDWeb.4.4.0.0&state=CfDJ8Pf0Q_Tf7MdJlkwgHpHhXV-zgvWuX7-eNySiAREs4Fuautjaabs0ek7TAg-WdNyZG2SFXzDJfRdGQrhs7jF_BsfTit9OK4PbXWmZYMLUWdws_-2jOT1zd2QSF8Bxi-WQZn0QY4Zm1-k9tuV5T3Neon4KchZ8lAa_1CqoDRu-B3ZpiCyAyPEORc7U3me6S_9fllMyXFb1MkaVHGMIgkoXA8wmT1muOsHBQyKzQXOH8dc6d8bnCSgZRFM_G8IYH1toA8Nfl10mNIzkC4re39-vbF-MJg0-Xcwq8zqKiF2ZrvsHs_swb2MISCNFsdyqFgSykG6kya1jH7Z5XR7gEjfyiCjiFGkNfR3FAyrOt9r2twM7hhAQdbafit7OYQRqv5fawXFhxhQgiC9eodqMP2IVV6E&x-client-SKU=ID_NET10_0&x-client-ver=8.15.0.0&sso_reload=trueRedirected

AI Security Verdict

Low Risk

Confidence: 88%

2
Risk Score

Page impersonates Microsoft login on an unranked domain and collects credentials – high‑risk phishing site.

Risk Factors
Brand impersonation
Unranked domain claiming major brand
Credential collection (email/password fields)
Cross‑origin form submission to external login endpoint
Potential phishing kit
Safety Factors
Domain age >20 years (well‑established)
No Indicators of Compromise matches
No JavaScript malware YARA detections
No network IDS alerts
Low JavaScript obfuscation score
Page served from an identity-provider sign-in endpoint (login.microsoftonline.com); a relying-party brand and login form here are normal SSO, not impersonation — risk clamped from 8 to 2
Domain age information unavailable

Details

Page Title

Sign in to your account

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

finance banking

(54%)

Domain Information

You're looking at domain 'bctarget.adminportal.union.dev' on the developer-focused generic top-level domain (.dev); it also runs on subdomain 'bctarget.adminportal'. Count 5 characters in 'union' with 3 vowels and 2 consonants. Word splitting yields one word: union. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://bctarget.adminportal.union.dev/Members/Index

Page Load Overview

1.83s
Total Load Time
17
HTTP Requests
4
Domains
466 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:124 chars
Detector Agreement:100%

Website Classification

Primary Category

finance banking54% confidence
Type: webapp
Method: ml+structural

All Detected Categories

finance banking
54%
news media journalism
47%
government public service
40%
healthcare medical
34%
documentation technical
29%

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
540.126.31.67Ireland
320.116.42.0Toronto, Ontario, Canada
AS8075Microsoft Corporation
313.107.246.44United States
AS8075Microsoft Corporation
340.126.32.136Netherlands
313.89.179.9Unknown
175--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1A4836CDA7EA21A3B878A01B5F5397D03AB3659038D4C8C60F19CCD842FFAB4D8627517

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:lX8GLG2+GoGBxGFGjAGl+GItkEoIyEk77gx2xpTvPoMmCfnEhIinGZfC:F8k1rEJ32RA0C

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:86783:kCBqJBQQVAADi2CIUAQ4oJW2BADMrFK1mA8CxBCBlLAHD0BmBCppQBgJ9UVhIGF0AuAATjGggjQAwEQgAqgARhbAWIEAaEon

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00103933372f373f
Perceptual Hash:8659517666d9991b
Difference Hash:88e4d2e7e7cee6e6
Wavelet Hash:00203b33373f373f
Color Hash:#d29e2d

Other Hashes

Crop Resistant:88e4d2e7e7cee6e6

Scan History

Scan history not available

Unable to load historical scan data