ScanMalware.com

Security Scan Report: group1.istoredocs.net

Redirected to: https://identity-eu-west-2.maddevs.net/Account/AppLogin?tenantUrl=https://group1.istoredocs.net

Site favicon
Submitted: Jan 30, 2026, 12:03:29 PMCompleted: Jan 30, 2026, 12:04:53 PMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 2 countries across 4 domains to perform 1 HTTP transaction. The main domain is identity-eu-west-2.maddevs.net and was registered NaN years ago.

Submitted URL: https://group1.istoredocs.net

Effective URL: https://identity-eu-west-2.maddevs.net/Account/AppLogin?tenantUrl=https://group1.istoredocs.netRedirected

The Cisco Umbrella rank of the primary domain is #114,978 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 82%

7
Risk Score

Potential phishing login page; do not enter credentials.

Risk Factors
Hidden password field (potential credential harvesting)
Low ranking domain for a login page
Redirect to a different domain for authentication
Domain age information unavailable

Details

Page Title

Login

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

government public service

(47%)

Domain Information

Within the network infrastructure generic top-level domain (.net), 'group1.istoredocs.net' is registered, featuring subdomain 'group1'. The core label 'istoredocs' covers 10 characters containing four vowels alongside six consonants. Tokenizing the label suggests three words: is, tore, docs. Median word length is 4 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://group1.istoredocs.net

Page Load Overview

5.45s
Total Load Time
21
HTTP Requests
5
Domains
14.9 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:118 chars
Detector Agreement:50%

Website Classification

Primary Category

government public service47% confidence
Type: webapp
Method: ml+structural

All Detected Categories

government public service
47%
news media journalism
43%
healthcare medical
42%
adult content
39%
documentation technical
29%

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
6104.18.40.68United States
AS13335Cloudflare, Inc.
518.135.68.4City of London, England, United Kingdom
AS16509Amazon.com, Inc.
5104.17.25.14United States
AS13335Cloudflare, Inc.
513.135.193.239United KingdomUnknown
214--

Detected Technologies4

PasswordField
100%
Bootstrapv4.6.1
100%
HSTS
40%
Episerver/Optimizely CMSvCMS 12+ (.NET Core)
25%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T19BF1096010F52C37074285D574A9AA053966A047C54AE998F7FC07FDAFE3DC78E1B21D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

96:fGXeRL9RvNt8usl1Zw6RZ6A9USYnIUNt8uhRPJnIUNt8uhRP3V28e8S8:fGXoZRQbnZzGWVGlWGl3VId8

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:7481:oKLAiIAnh63RQQikkxBwoowRswlqVEIIoCUgEKEyBYDwCgAQgQAAJaRipExIwF4EABgDoCQbHMJFgRWgSg5bo8oQQCcAwHWZ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:c0c0c0c0c0c0c0c0
Perceptual Hash:f0539b8f55c515c4
Difference Hash:18999c9c91959998
Wavelet Hash:ccc4c4c0e0e1ffce
Color Hash:#96c587

Other Hashes

Crop Resistant:17ddf71717175707,0e5e7a6202020202,18999c9c90959998

Scan History

Scan history not available

Unable to load historical scan data