ScanMalware.com

Security Scan Report: lcw2-api.learningcaregroup.com

Redirected to:
https://login.microsoftonline.com/352f66c0-6eb7-46ff-b4ed-80ed52500c89...
Submitted: Apr 20, 2026, 3:18:51 AMCompleted: Apr 20, 2026, 3:20:00 AMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 2 countries across 5 domains to perform 1 HTTP transaction. The main domain is login.microsoftonline.com and was registered NaN years ago.

Submitted URL: https://lcw2-api.learningcaregroup.com

Effective URL: https://login.microsoftonline.com/352f66c0-6eb7-46ff-b4ed-80ed52500c89/oauth2/v2.0/authorize?scope=openid+profile+offline_access+&response_type=code&redirect_uri=https%3A%2F%2Flcw2-api.learningcaregroup.com%2Fcenter%2Fdaycare.do&state=448f5d16-f9ee-4414-a76b-f32a38e163ed&nonce=d7d44f8a-1474-4f29-b5ab-252837d4285e&prompt=select_account&client_id=6f78da98-955d-4cc7-ac82-05a8457f5c4b&response_mode=query&sso_reload=trueRedirected

The Cisco Umbrella rank of the primary domain is #73,236 of the top 1 million websites

AI Security Verdict

Moderate Risk

Confidence: 92%

5
Risk Score

The site mimics a Microsoft login on an unrelated, older domain, collecting credentials – high‑risk brand impersonation phishing.

Risk Factors
Brand impersonation (Microsoft) on unrelated domain
Credential collection via login form
High JavaScript obfuscation score
Potential phishing phone support number
Safety Factors
Domain age >20 years (well‑established)
Domain ranking within top 100 K
No malicious Indicators of Compromise detected
Cross‑origin SSO flow identified as legitimate pattern
Established domain (8685 days old) with no strong malicious indicators — risk clamped from 8 to 5
Domain age information unavailable

Details

Page Title

Sign in to your account

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(37%)

Domain Information

The domain 'lcw2-api.learningcaregroup.com' uses the commercial generic top-level domain (.com) with subdomain 'lcw2-api'. The registrable portion 'learningcaregroup' spans 17 characters holding 7 vowels versus 10 consonants. Tokenizing the label suggests 3 words: learning, care, group. Median word length comes out to 5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://lcw2-api.learningcaregroup.com

Page Load Overview

1.19s
Total Load Time
17
HTTP Requests
4
Domains
464 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:308 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software37% confidence
Type: webapp
Method: ml+structural

All Detected Categories

technology software
37%
education learning
36%
healthcare medical
33%

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
513.107.246.44Germany
AS14618
323.207.210.137Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
320.190.159.64Ireland
AS20940
33.218.229.8UnknownUnknown
320.190.160.130UnknownUnknown
175--

Detected Technologies5

X-UA-Compatible
100%
PasswordField
100%
Meta-Refresh-Redirect
100%
HSTS
40%
Ghost
15%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1A6834ADA7EA21A37834A41B5B4762E02AB7A99038C4CDD60F15CCDC82FFA75D8133657

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:jc8GLG2HvJONCzoIyEk77gx2xpTvPoMmCBEEl8ipVC:w8ovJ9zJ32RAcVC

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:81643:EQYYXjAkDCAJgADKhWYgCh6CSgypAaoMUCABx4QICA4QAoIUkQ9QnUAzOxAIQJEYksBSUKAGASCgPC5gqUgAUgAxRAPOEAY4

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00383b3727277f7f
Perceptual Hash:8759587366cc5933
Difference Hash:88e0d2e7cdcee6e6
Wavelet Hash:00383b33272f373f
Color Hash:#40bf59

Other Hashes

Crop Resistant:88e0d2e7cdcee6e6

Scan History

Scan history not available

Unable to load historical scan data