ScanMalware.com

Security Scan Report: dev-microstrategy.testko.com

Redirected to: https://login.microsoftonline.com/eb36d020-2c35-44de-bc7a-554cc979b26d/oauth2/authorize?response_type=code&client_id=67d29504-5ca8-4ec9-8c9f-97283fcfb07d&scope=openid&nonce=d0ac7445-c4a7-4f2a-9b07-7b5b24f55794&redirect_uri=https%3a%2f%2fdev-microstrategy.testko.com%2f&state=AppProxyState%3a%7b%22InvalidTokenRetry%22%3anull%2c%22IsMsofba%22%3afalse%2c%22OriginalRawUrl%22%3a%22https%3a%5c%2f%5c%2fdev-microstrategy.testko.com%5c%2f%22%2c%22RequestProfileId%22%3anull%2c%22SessionId%22%3a%22d9327598-49e5-4a42-a165-590a338c7b7c%22%7d%23EndOfStateParam%23&client-request-id=d9327598-49e5-4a42-a165-590a338c7b7c&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&sso_reload=true

Site favicon
Submitted: Jan 28, 2026, 4:12:20 PMCompleted: Jan 28, 2026, 4:13:32 PMpubliccompleted
Loading additional data...

Summary

This website contacted 7 IPs in 3 countries across 8 domains to perform 45 HTTP transactions. The main domain is login.microsoftonline.com and was registered NaN years ago.

Submitted URL: https://dev-microstrategy.testko.com

Effective URL: https://login.microsoftonline.com/eb36d020-2c35-44de-bc7a-554cc979b26d/oauth2/authorize?response_type=code&client_id=67d29504-5ca8-4ec9-8c9f-97283fcfb07d&scope=openid&nonce=d0ac7445-c4a7-4f2a-9b07-7b5b24f55794&redirect_uri=https%3a%2f%2fdev-microstrategy.testko.com%2f&state=AppProxyState%3a%7b%22InvalidTokenRetry%22%3anull%2c%22IsMsofba%22%3afalse%2c%22OriginalRawUrl%22%3a%22https%3a%5c%2f%5c%2fdev-microstrategy.testko.com%5c%2f%22%2c%22RequestProfileId%22%3anull%2c%22SessionId%22%3a%22d9327598-49e5-4a42-a165-590a338c7b7c%22%7d%23EndOfStateParam%23&client-request-id=d9327598-49e5-4a42-a165-590a338c7b7c&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&sso_reload=trueRedirected

AI Security Verdict

High Risk

Confidence: 88%

8
Risk Score

Page impersonates Coca‑Cola with a credential‑stealing login; do not enter credentials.

Risk Factors
Brand impersonation on an unrelated, unranked domain
Login form collecting credentials on a non‑official brand domain
Domain name does not match the advertised brand (Coca‑Cola)
Potential URL manipulation: user sees Coca‑Cola branding but is sent to Microsoft login
Domain age information unavailable

Details

Page Title

Sign in to your account

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(88%)

Domain Information

Domain 'dev-microstrategy.testko.com' uses the commercial generic top-level domain (.com), featuring subdomain 'dev-microstrategy'. The registrable portion 'testko' spans 6 characters with 2 vowels and 4 consonants. Segmentation suggests 2 words: test, ko. Expect three characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://dev-microstrategy.testko.com

Page Load Overview

1.26s
Total Load Time
30
HTTP Requests
7
Domains
1.1 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:214 chars
Detector Agreement:67%

Website Classification

Primary Category

technology software88% confidence
Type: webapp
Method: ml+structural

All Detected Categories

technology software
88%

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
6172.172.255.228Washington, Virginia, United States
AS8075Microsoft Corporation
420.190.160.65Germany
AS20940
420.44.10.123IrelandUnknown
440.126.31.67United StatesUnknown
413.107.213.44UnknownUnknown
42.23.227.214UnknownUnknown
420.190.160.22UnknownUnknown
307--

Detected Technologies4

X-UA-Compatible
100%
PasswordField
100%
Meta-Refresh-Redirect
100%
Ghost
15%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T175835BD67EB71D36864A81B9B5767E06AA3A59038848CDB0F08CCE842FF775D8033617

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:jo8GLGGWW4ORkknwIW2Jj2ozTEyqU6MVnvnaloMPtbEQrBi8UvC:s8NW4ORkknwIW2V2XyS24UvC

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:82183:ApAWQ2NEknCEkqEkICEKAmEyklMhX0B4BgkFABkA5BDBQVbzBAQGRkhiKKShYEABBLIv0SBQBQAwPw4HiCThCiwzAVBKFAVS

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00051818181a1010
Perceptual Hash:8db176330dc9c98d
Difference Hash:5c9cb23272f27266
Wavelet Hash:2fc77b181a3b1b12
Color Hash:#c587ae

Other Hashes

Crop Resistant:9a58609c93838e82,9080c03034c080c8,5c9cb23272f27266

Scan History

Scan history not available

Unable to load historical scan data