ScanMalware.com

Security Scan Report: thaioilgroup0-my.sharepoint.com

Redirected to: https://login.microsoftonline.com/894f6e4e-e59c-47ff-be1e-b63a852cfb53/oauth2/authorize?client%5Fid=00000003%2D0000%2D0ff1%2Dce00%2D000000000000&response%5Fmode=form%5Fpost&response%5Ftype=code%20id%5Ftoken&resource=00000003%2D0000%2D0ff1%2Dce00%2D000000000000&scope=openid&nonce=B42D18E07D4C3AB281BE51CA18828B46CA667F425466F969%2D2A9BF888A91D04E6C93C7D08AE0D4E86992E97455201B8E8EE63B24576F7E832&redirect%5Furi=https%3A%2F%2Fthaioilgroup0%2Dmy%2Esharepoint%2Ecom%2F%5Fforms%2Fdefault%2Easpx&state=OD0w&claims=%7B%22id%5Ftoken%22%3A%7B%22xms%5Fcc%22%3A%7B%22values%22%3A%5B%22CP1%22%5D%7D%7D%7D&wsucxt=1&cobrandid=11bd8083%2D87e0%2D41b5%2Dbb78%2D0bc43c8a8e8a&client%2Drequest%2Did=3b1102a2%2D8077%2D7000%2D0d51%2Dedce097950e0&sso_reload=true

Submitted: Mar 21, 2026, 5:38:21 AMCompleted: Mar 21, 2026, 5:39:31 AMpubliccompleted
Loading additional data...

Summary

This website contacted 7 IPs in 3 countries across 7 domains to perform 37 HTTP transactions. The main domain is login.microsoftonline.com and was registered NaN years ago.

Submitted URL: https://thaioilgroup0-my.sharepoint.com

Effective URL: https://login.microsoftonline.com/894f6e4e-e59c-47ff-be1e-b63a852cfb53/oauth2/authorize?client%5Fid=00000003%2D0000%2D0ff1%2Dce00%2D000000000000&response%5Fmode=form%5Fpost&response%5Ftype=code%20id%5Ftoken&resource=00000003%2D0000%2D0ff1%2Dce00%2D000000000000&scope=openid&nonce=B42D18E07D4C3AB281BE51CA18828B46CA667F425466F969%2D2A9BF888A91D04E6C93C7D08AE0D4E86992E97455201B8E8EE63B24576F7E832&redirect%5Furi=https%3A%2F%2Fthaioilgroup0%2Dmy%2Esharepoint%2Ecom%2F%5Fforms%2Fdefault%2Easpx&state=OD0w&claims=%7B%22id%5Ftoken%22%3A%7B%22xms%5Fcc%22%3A%7B%22values%22%3A%5B%22CP1%22%5D%7D%7D%7D&wsucxt=1&cobrandid=11bd8083%2D87e0%2D41b5%2Dbb78%2D0bc43c8a8e8a&client%2Drequest%2Did=3b1102a2%2D8077%2D7000%2D0d51%2Dedce097950e0&sso_reload=trueRedirected

The Cisco Umbrella rank of the primary domain is #66 of the top 1 million websitesTop 100 Site

AI Security Verdict

High Risk

Confidence: 78%

7
Risk Score

Phishing page impersonating Thai Oil, harvesting Microsoft credentials.

Risk Factors
Cross‑origin credential form collecting email and password
Brand impersonation (Thai Oil) on a SharePoint subdomain
Login form with password field on a domain that does not belong to the brand
Domain age information unavailable

Details

Page Title

Sign in to your account

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

The domain name 'thaioilgroup0-my.sharepoint.com' uses the commercial generic top-level domain (.com), featuring subdomain 'thaioilgroup0-my'. The second-level label 'sharepoint' is 10 characters long with 4 vowels and 6 consonants. It segments into two words: share, point. The median word length lands at 5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://thaioilgroup0-my.sharepoint.com

Page Load Overview

2.44s
Total Load Time
29
HTTP Requests
7
Domains
444 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:221 chars
Detector Agreement:67%

Website Classification

Primary Category

unknown0% confidence
Type: webapp
Method: structural

All Detected Categories

No categories detected

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
540.126.31.129Germany
AS8075
423.207.210.132Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
420.42.72.131NetherlandsUnknown
440.126.32.134United StatesUnknown
413.107.246.44United States
AS8075Microsoft Corporation
440.126.31.67UnknownUnknown
413.107.136.10Redmond, Washington, United States
AS8075Microsoft Corporation
297--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T19F837DD97FE22937C28645B1B4B97E027A7A6C43884CDDA4F14CC9882FEAB4D8137517

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:lJ6P8GLG2mQCUXNf3UeDoIyEk77gx2xpTvPoMmCfuEbDXjiNNfJC:36P8RQCUXF/DJ32RAjFJC

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:82908:loBChAgBABECAAeEBM6KWQEPgPQAhKYsCwMlEVDAiBACgKqjwVOAQjkQIVICGniT0GABqmMAiy1FhQzAAgCiFAEOEDmcNScC

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0010393327273737
Perceptual Hash:8659597666d9992a
Difference Hash:88e4d2e7edcee6e6
Wavelet Hash:00203b37273f373f
Color Hash:#2dd2cd

Other Hashes

Crop Resistant:88e4d2e7edcee6e6

Scan History

Scan history not available

Unable to load historical scan data