ScanMalware.com

Security Scan Report: sfapi.formstack.io

Submitted: May 14, 2026, 5:01:48 PMCompleted: May 14, 2026, 5:02:59 PMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 2 countries across 2 domains to perform 2 HTTP transactions. The main domain is sfapi.formstack.io and was registered NaN years ago.

Submitted URL: https://sfapi.formstack.io

The Cisco Umbrella rank of the primary domain is #214,546 of the top 1 million websites

AI Security Verdict

Moderate Risk

Confidence: 78%

4
Risk Score

The site mimics Microsoft Azure, has a critical IDS alert suggesting possible data exfiltration, and shows moderate risk despite its age and lack of forms.

Risk Factors
Brand impersonation of Microsoft Azure on unrelated domain
Low domain ranking for a claimed high‑profile brand
Critical IDS alert indicating possible malware activity
Safety Factors
Domain age 3129 days (well‑established)
No forms collecting credentials or payments
No JavaScript malware patterns detected
Low JavaScript obfuscation score (standard minification)
No Indicators of Compromise found in threat intelligence
Domain age information unavailable

Details

Page Title

Microsoft Azure App Service - Welcome

Scan Type

public

Language

🇺🇸

English

(55% confidence)

Category

technology software

(59%)

Domain Information

You're looking at domain 'sfapi.formstack.io' on the British Indian Ocean Territory country-code top-level domain (.io) with subdomain 'sfapi'. The registrable portion 'formstack' spans 9 characters holding 2 vowels versus 7 consonants. It segments into 2 words: form, stack. The median word length lands at 4.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://sfapi.formstack.io

Page Load Overview

1.46s
Total Load Time
12
HTTP Requests
7
Domains
118 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:55%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:55%
Script Type:Latin
Text Length:236 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software59% confidence
Type: static
Method: ml+structural

All Detected Categories

technology software
59%
documentation technical
49%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
652.167.179.134Boydton, Virginia, United States
AS8075Microsoft Corporation
620.50.64.19Dublin, Leinster, Ireland
AS8075Microsoft Corporation
122--

Detected Technologies2

X-UA-Compatible
100%
Microsoft ASP.NET
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1B65373B6034857FE80859B885BBA759B32A544EAF2B4A1ECCFA37D979C00DF30074D61

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:j8btdV3YkiQqsYTjqas9fA/LpH/tPy5mgMx:jqK

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:66049:B29GlAEIAWTEQHTgOjAnDj5EaEaRKBBCAsCAE+VS1MCBEBGARiyCARcIFSyEoCAJMRisgEJStAzOrQABFArBoJHIQCBgR5T8

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:000000ffffffffff
Perceptual Hash:b3064cb273a373b1
Difference Hash:e8e088089d1c0000
Wavelet Hash:000000ffffffff00
Color Hash:#86462d

Other Hashes

Crop Resistant:3079aa092b535360,6249b92121b0f171,4acad4562b5c5860,88080c1c1c000000,ccf960c6ecb072cc,8000202000800000

Scan History

Scan history not available

Unable to load historical scan data