ScanMalware.com

Security Scan Report: sso.paccar.net

Redirected to:
https://sso.paccar.net/WebIdPForms/Login/Portal
Site favicon
Submitted: May 9, 2026, 7:30:16 PMCompleted: May 9, 2026, 7:31:26 PMpubliccompleted
Loading additional data...

Summary

This website contacted 7 IPs in 2 countries across 7 domains to perform 64 HTTP transactions. The main domain is sso.paccar.net and was registered NaN years ago.

Submitted URL: https://sso.paccar.net

Effective URL: https://sso.paccar.net/WebIdPForms/Login/PortalRedirected

The Cisco Umbrella rank of the primary domain is #114,852 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 85%

8
Risk Score

The site hosts a credential‑stealing login page and triggers critical IDS alerts for data exfiltration and C2, indicating a high‑risk phishing operation.

Risk Factors
Credential collection on a domain with low brand ranking
Critical network IDS alerts for data exfiltration and C2 activity
Potential brand impersonation (claims to be PACCAR.net on a subdomain)
High volume of suspicious POST requests
Domain age information unavailable

Details

Bot Protection Detected

This website is protected by access_denied bot protection. Our scanner was challenged or blocked during access.

Page Title

Login using PACCAR.net

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(38%)

Domain Information

Domain 'sso.paccar.net' uses the network infrastructure generic top-level domain (.net) with subdomain 'sso'. The core label 'paccar' covers 6 characters split between 2 vowels and 4 consonants. Segmentation suggests two words: pac, car. Median word length comes out to 3 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://sso.paccar.net

Page Load Overview

4.53s
Total Load Time
83
HTTP Requests
6
Domains
5.6 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:6,484 chars
Detector Agreement:67%

Website Classification

Primary Category

technology software38% confidence
Type: spa
Method: ml+structural

All Detected Categories

technology software
38%
documentation technical
32%
social media network
28%
government public service
26%
social_media
25%

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
17142.251.153.119United States
AS15169Google LLC
11150.171.109.100United States
AS8075Microsoft Corporation
11142.251.110.94United States
AS15169Google LLC
11142.250.154.95United States
AS15169Google LLC
1120.119.191.92Boydton, Virginia, United States
AS8075Microsoft Corporation
1120.50.88.234Amsterdam, North Holland, Netherlands
AS8075Microsoft Corporation
11142.250.154.94United States
AS15169Google LLC
837--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1E034F991A1F60537027640E5E5F9A2062E60E10BCA071C74FBDD82552FCDF59ECABB8E

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

6144:zJwOxIl/Fd92EvPQY1r2Dfw/O1akarU/Y:zaR

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:244378:gg6AgANEcuAhwUmjILRsAKBARDRErkAbQkgimOsIChA43ABoA0PgYmoEiTtAccBgIBFIYIlAUAsBAAkP6iDgQwKRBEFo0QJB

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:f8fcff781800ffff
Perceptual Hash:c8c8b71e09e6369d
Difference Hash:a0b090b3b3e18302
Wavelet Hash:d0f8fc001800ffff
Color Hash:#a240bf

Other Hashes

Crop Resistant:a0b090b3b3e18302,8bb3b2b2b02cc4c1

Scan History

Scan history not available

Unable to load historical scan data