ScanMalware.com

Security Scan Report: ap.ssso.hdems.com

Redirected to: https://ap.ssso.hdems.com/?s=2.1773133180.q1bKVLJS8g8Isgzz90wpMrQMyLb09HCrCLMIDyoN93OvKK009PD3Lkkvqaww8LHw8FTSUSpSsqpWKgFqy1CqrQUA.9ed2160f9f9e2f51aba88aa4163b8d3074be5da24e9a3a600f47adbeffd69758

Submitted: Mar 10, 2026, 8:59:35 AMCompleted: Mar 10, 2026, 9:01:01 AMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 2 countries across 3 domains to perform 6 HTTP transactions. The main domain is ap.ssso.hdems.com and was registered NaN years ago.

Submitted URL: https://ap.ssso.hdems.com

Effective URL: https://ap.ssso.hdems.com/?s=2.1773133180.q1bKVLJS8g8Isgzz90wpMrQMyLb09HCrCLMIDyoN93OvKK009PD3Lkkvqaww8LHw8FTSUSpSsqpWKgFqy1CqrQUA.9ed2160f9f9e2f51aba88aa4163b8d3074be5da24e9a3a600f47adbeffd69758Redirected

The Cisco Umbrella rank of the primary domain is #459,118 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 88%

7
Risk Score

The page mimics a HENNGE login on an unrelated, low‑rank domain and likely aims to harvest credentials; avoid and report.

Risk Factors
Brand impersonation (HENNGE branding on unrelated domain)
Low Cisco Umbrella ranking for a site claiming to be a well‑known service
Credential collection form on a non‑official domain
Domain age information unavailable

Details

Page Title

HENNGE Access Control

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

healthcare medical

(63%)

Domain Information

The domain 'ap.ssso.hdems.com' uses the commercial generic top-level domain (.com), featuring subdomain 'ap.ssso'. The second-level label 'hdems' is 5 characters long containing 1 vowel alongside four consonants. Breaking it apart gives two words: hd, ems. Average segment length settles at 2.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://ap.ssso.hdems.com

Page Load Overview

2.50s
Total Load Time
10
HTTP Requests
3
Domains
323 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:52 chars
Detector Agreement:100%

Website Classification

Primary Category

healthcare medical63% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

healthcare medical
63%
government public service
53%
news media journalism
47%
technology software
40%
documentation technical
38%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
420.43.67.34Tokyo, Tokyo, Japan
AS8075Microsoft Corporation
352.192.230.50Tokyo, Tokyo, Japan
AS16509Amazon.com, Inc.
334.160.81.0Kansas City, Missouri, United States
AS396982Google LLC
103--

Detected Technologies3

Amazon Web Services
50%
HSTS
40%
Amazon S3
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T19D128EEF64F81ABB08474F5B7E10EA183CEA8785D516DC09B6FE61A05788C54CC175A8

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:K6ZCxf7RNQ8pCZkF5CK5A5PrEyDnARt5dgJ4NsBI/8KKmdB1nY+YFfw:K6ZCxzRXCZy5CKm5PQ5t5dgJvY8mYbFI

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:9578:QDMJAAUMoX0AGQkWQ8Bby1kFNGzJAZDQB3MSS1AlEiQTgg4wi4ABwgQSCihCTQwoyCkoAM0O4MFiEgAIGAKbAFJSpYKEN4bz

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0000393f3f3f0f0f
Perceptual Hash:886a7666dd9d8136
Difference Hash:02c1b3b2b2f27c3c
Wavelet Hash:00007d3f3f3f0f0f
Color Hash:#3a5b78

Other Hashes

Crop Resistant:f270626af0b83133,02c1b3b2b2f27c3c

Scan History

Scan history not available

Unable to load historical scan data