ScanMalware.com

Security Scan Report: msoid.zoochic-eu.ru

Redirected to: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=4765445b-32c6-49b0-83e6-1d93765276ca&redirect_uri=https%3A%2F%2Fwww.office.com%2Flandingv2&response_type=code%20id_token&scope=openid%20profile%20https%3A%2F%2Fwww.office.com%2Fv2%2FOfficeHome.All&response_mode=form_post&nonce=639023408395248457.YzdhNTJhMDQtNzNjOS00MmYzLTk3ZDMtMmIzN2NmZWQyNGU3Yzk5NTE0N2MtMDUwMy00MmMxLWEwZTktNjhlZDEyZDcyM2Vk&ui_locales=en-US&mkt=en-US&client-request-id=e8b3ee8b-b174-4c3f-9604-bad91e29bce8&state=aduwCgRIsX4ZFsiLdWPll7-Widardt4mXmzRli7z_nRQXiN5nTOcbIT-DXe-kjSB3om0iPMMscZkpR1E_hbD4Y1qryvNVtI2zeePHjKGezDvDJtfPfzi5bmPG2gbe-gooHGKhSBdfCWFryIEd8jEFjULXjdsOHValmCn2YWO1P-dv1Z09BBq5k6x6MUpRnde2H61PAaLXClZIiF9bef1AyKXD-qvO4C4L9bYnYciX4Gf0pPliw16YPUhm_9SccCOaZLOnuprXIi2S1_BWpXuai0EVsl-GQVcXxnBfNZ9sw0&x-client-SKU=ID_NET8_0&x-client-ver=8.5.0.0&sso_reload=true

Site favicon
Submitted: Dec 26, 2025, 10:13:55 AMCompleted: Dec 26, 2025, 10:14:16 AMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 3 countries across 6 domains to perform 49 HTTP transactions. The main domain is login.microsoftonline.com and was registered NaN years ago.

Submitted URL: https://msoid.zoochic-eu.ru

Effective URL: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=4765445b-32c6-49b0-83e6-1d93765276ca&redirect_uri=https%3A%2F%2Fwww.office.com%2Flandingv2&response_type=code%20id_token&scope=openid%20profile%20https%3A%2F%2Fwww.office.com%2Fv2%2FOfficeHome.All&response_mode=form_post&nonce=639023408395248457.YzdhNTJhMDQtNzNjOS00MmYzLTk3ZDMtMmIzN2NmZWQyNGU3Yzk5NTE0N2MtMDUwMy00MmMxLWEwZTktNjhlZDEyZDcyM2Vk&ui_locales=en-US&mkt=en-US&client-request-id=e8b3ee8b-b174-4c3f-9604-bad91e29bce8&state=aduwCgRIsX4ZFsiLdWPll7-Widardt4mXmzRli7z_nRQXiN5nTOcbIT-DXe-kjSB3om0iPMMscZkpR1E_hbD4Y1qryvNVtI2zeePHjKGezDvDJtfPfzi5bmPG2gbe-gooHGKhSBdfCWFryIEd8jEFjULXjdsOHValmCn2YWO1P-dv1Z09BBq5k6x6MUpRnde2H61PAaLXClZIiF9bef1AyKXD-qvO4C4L9bYnYciX4Gf0pPliw16YPUhm_9SccCOaZLOnuprXIi2S1_BWpXuai0EVsl-GQVcXxnBfNZ9sw0&x-client-SKU=ID_NET8_0&x-client-ver=8.5.0.0&sso_reload=trueRedirected

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

Phishing page impersonating Microsoft login; high risk.

Risk Factors
Credential harvesting form on a non‑Microsoft domain
Brand impersonation/typosquatting of Microsoft
Unranked domain used for a Microsoft‑style login page
Domain age information unavailable

Details

Page Title

Sign in to your account

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

Within the Russian country-code top-level domain (.ru), 'msoid.zoochic-eu.ru' is registered, featuring subdomain 'msoid'. The second-level label 'zoochic-eu' is 10 characters long with five vowels and four consonants, along with one hyphen. Segmentation suggests three words: zoo, chic, eu. Median word length comes out to three characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://msoid.zoochic-eu.ru

Page Load Overview

3.68s
Total Load Time
31
HTTP Requests
6
Domains
469 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:133 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: webapp
Method: structural

All Detected Categories

No categories detected

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
713.107.246.44United States
AS8075
620.190.160.2France
AS8068
640.126.31.73NetherlandsUnknown
640.126.32.138Amsterdam, North Holland, Netherlands
AS8075MICROSOFT-CORP-MSN-AS-BLOCK
620.50.201.201UnknownUnknown
315--

Detected Technologies4

X-UA-Compatible
100%
PasswordField
100%
Meta-Refresh-Redirect
100%
Ghost
15%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1F9835CD63EA72E37468A84B1B8763E01AA3799439C4CCD64F18C8D842FFB74D8127657

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:lc7oO7RC8GLGGN4P7oX7RtIA7R4e1AhfbqzzTEyqU6MVnvnaloMPbJEfii47ErAC:a7X7k877G7PIA7QqmyS2S7DC

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:84835:gJAQGiAUqACJIiwArjSMaKaMJVRIouIABAHhjaf2NojkA4TAgUgAR1zFYADEKgVcIGmKFiIDIwBhIXBSDOABEgVIAEAhGnFO

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0010393b373f373f
Perceptual Hash:845971764699d96e
Difference Hash:88e4d2d3e5e6e6e6
Wavelet Hash:00003b3b373f373f
Color Hash:#e06cc7

Other Hashes

Crop Resistant:88e4d2d3e5e6e6e6

Scan History

Scan history not available

Unable to load historical scan data