ScanMalware.com

Security Scan Report: na11.springcm.com

Redirected to: https://login.springcm.com/

Site favicon
Submitted: Jan 18, 2026, 4:08:10 AMCompleted: Jan 18, 2026, 4:09:19 AMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 2 countries across 5 domains to perform 1 HTTP transaction. The main domain is login.springcm.com and was registered NaN years ago.

Submitted URL: https://na11.springcm.com

Effective URL: https://login.springcm.com/Redirected

The Cisco Umbrella rank of the primary domain is #71,493 of the top 1 million websites

AI Security Verdict

Moderate Risk

Confidence: 80%

4
Risk Score

Legitimate login page but contains suspicious form elements; proceed carefully.

Risk Factors
Disguised password field
Unicode evasion (mixed scripts) in form fields
Safety Factors
Well‑established domain (20+ years old)
Cisco Umbrella rank in top 100 k
Final URL matches official SpringCM (DocuSign) domain
No malicious Indicators of Compromise matches
No payment fields or external links
Domain age information unavailable

Details

Page Title

Log In - Docusign CLM

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(55%)

Domain Information

You're looking at domain 'na11.springcm.com' on the commercial generic top-level domain (.com) and includes subdomain 'na11'. Its registrable label 'springcm' stretches across 8 characters containing 1 vowel alongside seven consonants. Splitting it apart reveals two words: spring, cm. Median word length is 4 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://na11.springcm.com

Page Load Overview

2.58s
Total Load Time
24
HTTP Requests
5
Domains
1.6 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:619 chars
Detector Agreement:67%

Website Classification

Primary Category

technology software55% confidence
Type: webapp
Method: ml+structural

All Detected Categories

technology software
55%
documentation technical
36%
government public service
32%

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
6216.58.206.74United States
AS15169GOOGLE
623.212.200.161Frankfurt am Main, Hesse, Germany
AS16625AKAMAI-AS
623.56.205.2Frankfurt am Main, Hesse, Germany
AS16625AKAMAI-AS
62.16.241.15Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
244--

Detected Technologies4

PasswordField
100%
HSTS
40%
AngularJS
30%
Episerver/Optimizely CMSvCMS 12+ (.NET Core)
25%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1C8D2E821415C6C3B131744D2F0F47F85799F9976CB22AA89F9FF41681FE2C40BB296A8

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:hp87705nktb4JS2b1NQc8JiwIhLXBmlkr:Hc05nktb482b1NQc8JiwIhLXgkr

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:28943:TDCAMA4IgAwMlREgWwyMyA1gaKJEEEGZcBK8BA0AQkTBQApzqZHiZRggDtkgwQRVCwhCgUXIEJigQHEcGkAZEAoxAKQcGNAa

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:f0f09090f0f8f0f0
Perceptual Hash:ce4e63c3643c1a6b
Difference Hash:a505252485646626
Wavelet Hash:f0f0b0f0f0f8f0f0
Color Hash:#78593a

Other Hashes

Crop Resistant:a505252485646626,c44723a51b7ba333,01c2bce5e59ccc03,1f0f0014020080f1,b078ffe5c0647078

Scan History

Scan history not available

Unable to load historical scan data