ScanMalware.com

Security Scan Report: argocd.northeurope.mdr.security.ntt

Redirected to: https://login.microsoftonline.com/8fa58a73-2ed8-4c41-8dc7-94bb010b4f94/oauth2/v2.0/authorize?approval_prompt=force&client_id=96500cb5-648c-49c7-8418-e9b0ee76b1c0&redirect_uri=https%3A%2F%2Fargocd.northeurope.mdr.security.ntt%2Foauth2%2Fcallback&response_type=code&scope=openid+email+profile+offline_access&state=d0CcycCvFCKFnhkK-rbYSKnczSpEYBmU6Eed4y4vAmc%3A%2F&sso_reload=true

Submitted: Dec 20, 2025, 4:15:13 PMCompleted: Dec 20, 2025, 4:15:58 PMpubliccompleted
Loading additional data...

Summary

This website contacted 9 IPs in 5 countries across 5 domains to perform 20 HTTP transactions. The main domain is login.microsoftonline.com and was registered NaN years ago.

Submitted URL: https://argocd.northeurope.mdr.security.ntt/

Effective URL: https://login.microsoftonline.com/8fa58a73-2ed8-4c41-8dc7-94bb010b4f94/oauth2/v2.0/authorize?approval_prompt=force&client_id=96500cb5-648c-49c7-8418-e9b0ee76b1c0&redirect_uri=https%3A%2F%2Fargocd.northeurope.mdr.security.ntt%2Foauth2%2Fcallback&response_type=code&scope=openid+email+profile+offline_access&state=d0CcycCvFCKFnhkK-rbYSKnczSpEYBmU6Eed4y4vAmc%3A%2F&sso_reload=trueRedirected

AI Security Verdict

Safe Website

Confidence: 92%

2
Risk Score

The page appears to be a legitimate Microsoft OAuth login flow, not a phishing site.

Safety Factors
OAuth redirect to a legitimate Microsoft login page
Login form is hosted by Microsoft, not by the suspicious domain
Domain is not newly registered and has a long history
No payment or sensitive data collection beyond standard credentials
Domain age information unavailable

Details

Page Title

Sign in to your account

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

Within the .ntt top-level domain, 'argocd.northeurope.mdr.security.ntt' is registered and includes subdomain 'argocd.northeurope.mdr'. Count 8 characters in 'security' split between 3 vowels and 5 consonants. Splitting it apart reveals one word: security. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://argocd.northeurope.mdr.security.ntt/

Page Load Overview

4.48s
Total Load Time
20
HTTP Requests
5
Domains
730 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:78 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: webapp
Method: structural

All Detected Categories

No categories detected

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
423.201.29.18Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
223.201.29.16Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
240.126.32.72Amsterdam, North Holland, Netherlands
AS8075MICROSOFT-CORP-MSN-AS-BLOCK
24.245.129.87Dublin, Leinster, Ireland
AS8075MICROSOFT-CORP-MSN-AS-BLOCK
240.126.32.74Amsterdam, North Holland, Netherlands
AS8075MICROSOFT-CORP-MSN-AS-BLOCK
213.107.246.53United States
AS8075MICROSOFT-CORP-MSN-AS-BLOCK
213.107.213.53United States
AS8075MICROSOFT-CORP-MSN-AS-BLOCK
240.126.53.6Sweden
AS8075MICROSOFT-CORP-MSN-AS-BLOCK
220.190.160.2Amsterdam, North Holland, Netherlands
AS8075MICROSOFT-CORP-MSN-AS-BLOCK
209--

Detected Technologies4

X-UA-Compatible
100%
PasswordField
100%
Meta-Refresh-Redirect
100%
Ghost
15%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T167733B96BEA72D37838A45B4B5BA3E02AF755D03894CDD60F19CC9842FFA70D8167603

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:vC8GLGGBN+XavzzTEyqU6MVnvnaloMP1WE5vUWiJdC:K80+qvmyS2LC

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:78875:CYAYEoeyRNBdACJEANZGQiIUYEoCABAuVKCAcAwTyxNGggpBsAkqIVsSMRIGN0wTYQKSABaxAxJAES0YZYgysSEUgECugYQA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:1f1f1f1f1f1f1f1f
Perceptual Hash:9ca1a55accad5a5a
Difference Hash:b43cbdb6b5b5b6b4
Wavelet Hash:1f0f071f1c1c171f
Color Hash:#d29b2d

Other Hashes

Crop Resistant:7070593c01013411,3151414911094101

Scan History

Scan history not available

Unable to load historical scan data