ScanMalware.com

Security Scan Report: analytics-services.ncontracts.com

Redirected to:
https://analytics-services.ncontracts.com/spotfire/ui/login
Site favicon
Submitted: May 27, 2026, 3:24:27 PMCompleted: May 27, 2026, 3:26:04 PMpubliccompleted
Loading additional data...

Summary

This website contacted 1 IP in 1 country across 1 domain to perform 16 HTTP transactions. The main domain is analytics-services.ncontracts.com and was registered NaN years ago.

Submitted URL: https://analytics-services.ncontracts.com

Effective URL: https://analytics-services.ncontracts.com/spotfire/ui/loginRedirected

The Cisco Umbrella rank of the primary domain is #85,670 of the top 1 million websites

AI Security Verdict

Moderate Risk

Confidence: 92%

5
Risk Score

The site impersonates Spotfire with a password‑only form on an unrelated, well‑established domain, indicating a high‑risk credential phishing attempt.

Risk Factors
Credential harvesting form (password‑only field)
Brand impersonation on unrelated domain
Potential phishing of Spotfire users
Safety Factors
Domain age 6475 days (well‑established)
No malicious Indicators of Compromise or YARA detections
No network IDS alerts or external malicious links
Established domain (6475 days old) with no strong malicious indicators — risk clamped from 7 to 5
Domain age information unavailable

Details

Page Title

Log in to Spotfire

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

The domain name 'analytics-services.ncontracts.com' uses the commercial generic top-level domain (.com), featuring subdomain 'analytics-services'. Its registrable label 'ncontracts' stretches across 10 characters with two vowels and 8 consonants. Word splitting yields two words: n, contracts. Median word length is 5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://analytics-services.ncontracts.com

Page Load Overview

3.25s
Total Load Time
16
HTTP Requests
1
Domains
369 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:25 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: static
Method: structural

All Detected Categories

No categories detected

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
16104.43.141.19Des Moines, Iowa, United States
AS8075Microsoft Corporation
161--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1F932DA720600E6AE19C3C95CCEB3B5B4105FC8DAE29EE2D829EBE76D5CD55E1F858130

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:1vEOBxjUm2G/dl3jEuHsnb7S8HBPMl1dM+Tg0bC07j:FUcj3jdMb75hm1cQX

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:11532:2meAIUCACBTkkB0JCAA6BEEasEowAMBoNjCR05aKEYFCqpARsAIYAEFIBkZDheQERoHpEiYgILHPCEGIABAoygkYEhACdAiC

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:e7e7efe7ffffffff
Perceptual Hash:a333c9cc7266cccc
Difference Hash:094a0c4d10284000
Wavelet Hash:00011b070f1f7fff
Color Hash:#5d783a

Other Hashes

Crop Resistant:094a0c4d10284000

Scan History

Scan history not available

Unable to load historical scan data