ScanMalware.com

Security Scan Report: employeeaccess.online

Submitted: Oct 28, 2025, 2:44:36 PMCompleted: Oct 28, 2025, 2:45:42 PMpubliccompleted
Loading additional data...

Summary

This website contacted 8 IPs in 2 countries across 2 domains to perform 3 HTTP transactions. The main domain is employeeaccess.online and was registered NaN years ago.

Submitted URL: https://employeeaccess.online/

AI Security Verdict

High Risk

Confidence: 92%

10
Risk Score

High‑risk phishing site impersonating Microsoft/Google; do not enter credentials.

Risk Factors
Brand impersonation on an unranked, newly registered domain
Very new domain (<30 days) with credential‑harvesting form
Login form collecting email without password (potential staged credential harvest)
Domain not listed in Cisco Umbrella top 1M
Domain age information unavailable

Details

Page Title

Sign in to your School account

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

education learning

(48%)

Domain Information

Domain 'employeeaccess.online' uses the modern generic top-level domain (.online). The core label 'employeeaccess' covers 14 characters with 6 vowels and 8 consonants. Tokenizing the label suggests 2 words: employee, access. The median word length lands at seven characters. 'employee' most strongly signals English. It also appears in Chinese (Pinyin) and Chinese (Zhuyin) contexts.

Screenshot

Security scan screenshot of https://employeeaccess.online/

Page Load Overview

31.85s
Total Load Time
3
HTTP Requests
2
Domains
12 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:143 chars
Detector Agreement:100%

Website Classification

Primary Category

education learning48% confidence
Type: static
Method: ml+structural

All Detected Categories

education learning
48%
finance banking
31%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
054.192.35.30United States
AS16509AMAZON-02
092.113.23.252Frankfurt am Main, Hesse, Germany
AS47583Hostinger International Limited
092.113.16.89Frankfurt am Main, Hesse, Germany
AS47583Hostinger International Limited
054.192.35.119United States
AS16509AMAZON-02
054.192.35.73United States
AS16509AMAZON-02
054.192.35.123United States
AS16509AMAZON-02
02a02:4780:45:5cc:2086:2710:65d3:d23eFrankfurt am Main, Hesse, Germany
AS47583Hostinger International Limited
02a02:4780:43:fc0a:71a0:3066:1961:e195Frankfurt am Main, Hesse, Germany
AS47583Hostinger International Limited
38--

Detected Technologies3

Hostinger CDN
40%
Hostinger
40%
HTTP/3
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T15AF13CC681A7198A9A0364103BEB4A1536AED087C64DDDEC3E4C77E88FCA3C6959535C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

96:nhImafDEgfg4uOgG+rmzog60EY0/1Y9aE8FAMRvmr9UwhIm900wY+GXPSMsx0EWt:hVarE+g4liGEY0/aUE64UwGmmsSMjDt

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:7774:xAjs5BIAxRwxBrAaqBGaFQAlC6WALqAV4CCSgUkwiCBElIIsgJIhCYSGJgaDhgqOA0AJgQgIBBAw6IkFGIM5AgRhNRgntiMA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:f2f0fcfc78713133
Perceptual Hash:ccf4256d9989e899
Difference Hash:2604819991d3e366
Wavelet Hash:f2f0fc7c78703130
Color Hash:#d22d6c

Other Hashes

Crop Resistant:2604819991d3e366

Scan History

Scan history not available

Unable to load historical scan data