ScanMalware.com

Security Scan Report: oldcastleapg.gpcloudservice.com

Redirected to: https://oldcastleapg.okta.com/app/oldcastleapg_paloaltoglobalprotectsaml_1/exk1u0o8820oxMoOS0h8/sso/saml

Site favicon
Submitted: Feb 26, 2026, 8:45:04 PMCompleted: Feb 26, 2026, 8:46:20 PMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 2 countries across 3 domains to perform 16 HTTP transactions. The main domain is oldcastleapg.okta.com and was registered NaN years ago.

Submitted URL: https://oldcastleapg.gpcloudservice.com

Effective URL: https://oldcastleapg.okta.com/app/oldcastleapg_paloaltoglobalprotectsaml_1/exk1u0o8820oxMoOS0h8/sso/samlRedirected

The Cisco Umbrella rank of the primary domain is #15,375 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 78%

7
Risk Score

Legitimate‑looking SAML login but a critical IDS alert flags possible data exfiltration, so treat as high‑risk.

Risk Factors
Critical IDS alert indicating possible data exfiltration
Domain age information unavailable

Details

Page Title

Oldcastle Architectural - Sign In

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

documentation technical

(66%)

Domain Information

The domain 'oldcastleapg.gpcloudservice.com' uses the commercial generic top-level domain (.com) with subdomain 'oldcastleapg'. The second-level label 'gpcloudservice' is 14 characters long containing five vowels alongside nine consonants. Segmentation suggests 3 words: gp, cloud, service. Median word length is 5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://oldcastleapg.gpcloudservice.com

Page Load Overview

3.01s
Total Load Time
30
HTTP Requests
5
Domains
296 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:422 chars
Detector Agreement:75%

Website Classification

Primary Category

documentation technical66% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

documentation technical
66%
real estate property
63%
technology software
53%
adult content
50%
government public service
40%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1065.8.131.81Ireland
AS16509
103.33.201.229United States
AS16509Amazon.com, Inc.
10169.224.148.140Dublin, Leinster, Ireland
AS16509Amazon.com, Inc.
303--

Detected Technologies1

HSTS
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1A2436C92095AD9DF16C5AD985A7B95492102C7C3C3A0EEC07BDDCEC7AF68C4B706E60C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:INSt/ShwkMiFT/iMbqwVyfiIT/iMbqwVyfiRRT/iMbqwVyfiSG:0S1SbMKyFqYyFqRlyFqf

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:57225:eJIAwuVEW2CJAsyCeFgIzRM6AATCKwQCAygkgAgCSlAaByISiBwmHUQsDoERYeAGICAGTAUIafCwkQTLCZaAAiWQDdkyAJoF

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:3f7fffffffffffff
Perceptual Hash:800000070fffffff
Difference Hash:c080000000000000
Wavelet Hash:30f0f0f0f0f0f0f0
Color Hash:#c58799

Other Hashes

Crop Resistant:c080000000000000

Scan History

Scan history not available

Unable to load historical scan data