ScanMalware.com

Security Scan Report: msg-usor.us.webexconnect.io

Site favicon
Submitted: Jun 27, 2026, 3:23:42 AMCompleted: Jun 27, 2026, 3:39:07 AMpubliccompleted
Loading additional data...

Summary

This website contacted 5 IPs in 1 country across 5 domains to perform 2 HTTP transactions. The main domain is msg-usor.us.webexconnect.io and was registered NaN years ago.

Submitted URL: https://msg-usor.us.webexconnect.io

The Cisco Umbrella rank of the primary domain is #276,689 of the top 1 million websites

AI Security Verdict

Low Risk

Confidence: 80%

3
Risk Score

Login page on a low‑rank subdomain with a credential form; high risk of phishing.

Risk Factors
Low Cisco Umbrella ranking for the domain
Highly obfuscated JavaScript code
Credential collection form on a subdomain not clearly verified as official
Safety Factors
Domain has been registered for over 4 years
No external Indicators of Compromise or malware signatures
No network IDS alerts
Form submits to same origin (no cross‑origin exfiltration)
No payment fields present
No concrete malicious signal (no IoC / YARA / Safe-Browsing / IDS / credential form / brand impersonation) — elevated risk rested on domain age or reputation alone; clamped from 7 to 3
Domain age information unavailable

Details

Page Title

connect

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(62%)

Domain Information

The domain name 'msg-usor.us.webexconnect.io' uses the British Indian Ocean Territory country-code top-level domain (.io) and includes subdomain 'msg-usor.us'. The core label 'webexconnect' covers 12 characters holding 4 vowels versus 8 consonants. Segmentation suggests 3 words: web, ex, connect. The median word length lands at three characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://msg-usor.us.webexconnect.io

Page Load Overview

6.55s
Total Load Time
35
HTTP Requests
8
Domains
194 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:198 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software62% confidence
Type: spa
Method: ml+structural

All Detected Categories

technology software
62%
documentation technical
36%
government public service
28%
cryptocurrency blockchain
27%

Detected Features

Login Form

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
7104.17.24.14United States
AS13335Cloudflare, Inc.
752.25.39.60Boardman, Oregon, United States
AS16509Amazon.com, Inc.
7104.18.1.22United States
AS13335Cloudflare, Inc.
7151.101.65.155United States
AS54113Fastly, Inc.
7142.251.110.97United States
AS15169Google LLC
355--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1CD63C675662EA4582343CEDA30CE751A1805E122D453867EB8FE1D6C4FCAEBF42B175C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:NVcIJFIEHzOitRMgXeiAE5fvgWw2kxPyhAAqaxKhem7HoZ:vwyhbxLT

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:71990:CBRgchFMvDkIFgKMQEwAjgYlQKQRFORHKAwFgCB0ARiSKHHgGWwhhThDujLARxsJAROkDTEAigA4VKQCmOwjICgkGJUoWBgM

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffe7e7e7ffffffc3
Perceptual Hash:b36799cc386634cc
Difference Hash:00084c4c30082016
Wavelet Hash:33230303f0f0f0c0
Color Hash:#643a78

Other Hashes

Crop Resistant:00084c4c30082016

Scan History

Scan history not available

Unable to load historical scan data