Security Scan Report: eelf.fa.us2.oraclecloud.com

Redirected to:
https://login.microsoftonline.com/db05faca-c82a-4b9d-b9c5-0f64b6755421...
Site favicon
Submitted: Jun 22, 2026, 2:18:34 AMCompleted: Jun 22, 2026, 2:19:59 AMpubliccompleted
Loading additional data...

Summary

This website contacted 12 IPs in 3 countries across 10 domains to perform 45 HTTP transactions. The main domain is login.microsoftonline.com and was registered NaN years ago.

Submitted URL: https://eelf.fa.us2.oraclecloud.com

Effective URL: https://login.microsoftonline.com/db05faca-c82a-4b9d-b9c5-0f64b6755421/oauth2/v2.0/authorize?client_id=7e95aaf6-8468-4d13-8658-09d3bd9617fd&response_type=code&redirect_uri=https%3A%2F%2Fauthgateway3.entiam.uhg.com%2Fext%2Fmicrosoft-authn&response_mode=query&scope=openid&state=csrfToken,PdrvSY5mbPEEXKfKVpZ1%7CresumePath,%2Fidp%2FNrO9gPqd9W%2FresumeSAML20%2Fidp%2FSSO.ping&sso_reload=trueRedirected

The Cisco Umbrella rank of the primary domain is #4,295 of the top 1 million websitesTop 10K Site

AI Security Verdict

High Risk

Confidence: 78%

8
Risk Score

Potential credential phishing site impersonating Optum; high risk due to brand mismatch, login form, and obfuscated scripts.

Risk Factors
Brand impersonation
Credential collection on mismatched domain
Excessive redirects
Highly obfuscated JavaScript
Hidden fields in login form
Domain age information unavailable

Details

Page Title

Sign in to your account

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

corporate business

(28%)

Domain Information

Domain 'eelf.fa.us2.oraclecloud.com' uses the commercial generic top-level domain (.com) with subdomain 'eelf.fa.us2'. Its registrable label 'oraclecloud' stretches across 11 characters holding five vowels versus six consonants. Tokenizing the label suggests 2 words: oracle, cloud. The median word length lands at 5.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://eelf.fa.us2.oraclecloud.com

Page Load Overview

14.41s
Total Load Time
45
HTTP Requests
10
Domains
464 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:184 chars
Detector Agreement:67%

Website Classification

Primary Category

corporate business28% confidence
Type: webapp
Method: ml+structural

All Detected Categories

corporate business
28%

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1220.190.159.128Dublin, Leinster, Ireland
AS8075Microsoft Corporation
318.66.137.67United States
AS16509Amazon.com, Inc.
323.197.137.87Frankfurt am Main, Hesse, Germany
AS16625Akamai Technologies, Inc.
340.126.31.2Dublin, Leinster, Ireland
AS8075Microsoft Corporation
3134.65.218.182Phoenix, Arizona, United States
AS31898Oracle Corporation
313.107.246.44United States
AS8075Microsoft Corporation
323.207.210.137Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
340.126.31.128Dublin, Leinster, Ireland
AS8075Microsoft Corporation
3149.111.164.44United States
AS10879Unitedhealthcare
320.190.159.129Dublin, Leinster, Ireland
AS8075Microsoft Corporation
4512--

Detected Technologies5

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T178835BE97EA72D37878640B5B5BA2E02AE375903894CCD64F15C88D82FFB70D8127617

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:Fk8GLG2uBdtVa8j7oKIZ9Tjuokmap5vPoMLuf0B04akiKbUdtV5C:y8D7tUE7Ga/AOb4tfC

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:83411:IMOAgBiDVVqQkBAIaExRltZBxxZrACL0gm0AgAkmAkDgUTDDqGAwhCqiKaNAYU4FUAREwKUSiGAHQAA4hos0IAWhEFEYhCGt

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0000181818180000
Perceptual Hash:8cd93366cc5c9999
Difference Hash:0c32b2b2b2b20c01
Wavelet Hash:0c043c3c1c1c0303
Color Hash:#ae2dd2

Scan History

Scan history not available

Unable to load historical scan data