ScanMalware.com

Security Scan Report: rush.edu

Redirected to: https://www.rush.edu/

Site favicon
Submitted: Dec 27, 2025, 11:12:34 AMCompleted: Dec 27, 2025, 11:13:36 AMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 1 country across 7 domains to perform 199 HTTP transactions. The main domain is rush.edu and was registered NaN years ago.

Submitted URL: https://rush.edu

Effective URL: https://www.rush.edu/Redirected

The Cisco Umbrella rank of the primary domain is #128,350 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 92%

7
Risk Score

High‑risk phishing page harvesting passwords on a legitimate‑looking domain

Risk Factors
Disguised password fields (type='text' with password placeholder)
Password fields without username/email fields
Credential harvesting form on a reputable‑looking domain
Domain age information unavailable

Details

Page Title

Rush University System for Health – A Top US & Chicago Hospital System

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

healthcare medical

(94%)

Domain Information

Domain 'rush.edu' uses the sponsored educational top-level domain (.edu) without a subdomain. The registrable portion 'rush' spans 4 characters holding 1 vowel versus 3 consonants. Word splitting yields one word: rush. Average segment length settles at four characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://rush.edu

Page Load Overview

26.53s
Total Load Time
202
HTTP Requests
9
Domains
1.8 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:10,770 chars
Detector Agreement:100%

Website Classification

Primary Category

healthcare medical94% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

healthcare medical
94%
adult content
58%
government public service
50%
education
45%
news/blog
20%

Detected Features

Search
Articles

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
423.233.48.238Ashburn, Virginia, United States
AS14618AMAZON-AES
4013.226.244.92United States
AS16509
4013.226.244.45United States
AS396982
40104.18.87.42United States
AS13335CLOUDFLARENET
4034.107.218.251Kansas City, Missouri, United States
AS396982GOOGLE-CLOUD-PLATFORM
2025--

Detected Technologies2

MetaGenerator
100%
Drupal
85%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1E3D309126AF45027025311D2677AA31DFFA2F687E301588872FC13689FEBD9A4D13B2D

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:EkNilz2EnQo+uTHiZKE+r9GSD6LBMNk/dI9gSnnoS/x5OF8wef+T/Fco/IbqrMIH:HNe9nX+uz+

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:140865:SCgBCHSsMYRQgNCIosZ8NSCgAByJBZKAYAwCIAycZCMDSahI/AAJgGABOEYgq5Qg1JWwhuMEA5IABhDoWGDKgAGhgYGVbfoY

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00e0c0e0e0e0ffff
Perceptual Hash:e66699411fbc641b
Difference Hash:1601042484c6182e
Wavelet Hash:00e0c0e0f0f0ffff
Color Hash:#aca353

Other Hashes

Crop Resistant:1601042484c6182e,0080c0c0c0c0c080,4121d1d8d8d92149,684d7a2828e03a19,191d97961f0b0f0f

Scan History

Scan history not available

Unable to load historical scan data