ScanMalware.com

Security Scan Report: nordstrom.gladly.com

Redirected to: https://nordstrom.okta.com/app/nordstrom_gladly_1/exkcxxdr4gHhrg3de2p7/sso/saml?SAMLRequest=jFLfb9MwEP5XIr%2Fnh9O0HdYSKaxCqzSgWgsPvEw3%2B9pai%2B3gu0D736OmmxgIlb2e7%2Fvh775rAtf1qh147%2B%2Fx%2B4DEycF1ntTpoRZD9CoAWVIeHJJirdbtxztVZoUCIoxsgxevIP1lTB8DBx06kSwXtbAmlXJWzYo5gtSl1LK8etRbwMqYKRaFwXfzalbostqK5CtGssHXoswKkSyJBlx6YvBci7IoZ2kh01JupFTTiZpMsqvp%2FJtIFkhsPfCI3DP3pPLch2iIY3BZeGLIdHA59P3v8cOuA9MdH2SOhyd9OJhY7W73cTcxWPbznCjkp7%2BKpH2J4CZ4GhzGNcYfVuOX%2B7t%2FqZ1pR70Xjhw0iWT1HMt76431u8sZPp6XSN1uNqt09Xm9Ec14RzWGEpMPITrgyySniTXpdlxV6NnyUTRvs%2ByQwQDDdf5KtXmu0idwuFysQmf18b9OZCb%2FduLAdq0xEYlE0nZd%2BHkTERhrwXFAkTdn1T872%2FwKAAD%2F%2Fw%3D%3D&RelayState=kU7HARcuHLFiXaeWDOwKE_UaYnsKmE4PSEDfcXyjiGh9ftnS8X2Zz9oJ

Submitted: Jan 21, 2026, 11:53:30 AMCompleted: Jan 21, 2026, 11:54:41 AMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 1 country across 3 domains to perform 17 HTTP transactions. The main domain is nordstrom.okta.com and was registered NaN years ago.

Submitted URL: https://nordstrom.gladly.com

Effective URL: https://nordstrom.okta.com/app/nordstrom_gladly_1/exkcxxdr4gHhrg3de2p7/sso/saml?SAMLRequest=jFLfb9MwEP5XIr%2Fnh9O0HdYSKaxCqzSgWgsPvEw3%2B9pai%2B3gu0D736OmmxgIlb2e7%2Fvh775rAtf1qh147%2B%2Fx%2B4DEycF1ntTpoRZD9CoAWVIeHJJirdbtxztVZoUCIoxsgxevIP1lTB8DBx06kSwXtbAmlXJWzYo5gtSl1LK8etRbwMqYKRaFwXfzalbostqK5CtGssHXoswKkSyJBlx6YvBci7IoZ2kh01JupFTTiZpMsqvp%2FJtIFkhsPfCI3DP3pPLch2iIY3BZeGLIdHA59P3v8cOuA9MdH2SOhyd9OJhY7W73cTcxWPbznCjkp7%2BKpH2J4CZ4GhzGNcYfVuOX%2B7t%2FqZ1pR70Xjhw0iWT1HMt76431u8sZPp6XSN1uNqt09Xm9Ec14RzWGEpMPITrgyySniTXpdlxV6NnyUTRvs%2ByQwQDDdf5KtXmu0idwuFysQmf18b9OZCb%2FduLAdq0xEYlE0nZd%2BHkTERhrwXFAkTdn1T872%2FwKAAD%2F%2Fw%3D%3D&RelayState=kU7HARcuHLFiXaeWDOwKE_UaYnsKmE4PSEDfcXyjiGh9ftnS8X2Zz9oJRedirected

The Cisco Umbrella rank of the primary domain is #8,011 of the top 1 million websitesTop 10K Site

AI Security Verdict

Low Risk

Confidence: 85%

2
Risk Score

Low risk login page; likely legitimate but verify before providing credentials

Risk Factors
Password field without accompanying username/email field
Safety Factors
Domain is >20 years old
High Cisco Umbrella ranking (top 10k)
No malicious Indicators of Compromise
Hosted on reputable Okta domain
Page displays "Powered by Okta" indicating third‑party authentication
Domain age information unavailable

Details

Page Title

Nordstrom - Sign In

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

e-commerce shopping

(87%)

Domain Information

Within the commercial generic top-level domain (.com), 'nordstrom.gladly.com' is registered and includes subdomain 'nordstrom'. The core label 'gladly' covers 6 characters holding 1 vowel versus five consonants. Tokenizing the label suggests 1 word: gladly. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://nordstrom.gladly.com

Page Load Overview

3.36s
Total Load Time
23
HTTP Requests
4
Domains
4.8 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:482 chars
Detector Agreement:67%

Website Classification

Primary Category

e-commerce shopping87% confidence
Type: dynamic
Method: ml+structural

All Detected Categories

e-commerce shopping
87%
documentation technical
64%
technology software
59%
adult content
50%
corporate business
45%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
918.66.112.31United States
AS16509AMAZON-02
7104.18.19.42United States
AS13335CLOUDFLARENET
713.248.165.67United States
AS16509AMAZON-02
233--

Detected Technologies4

PasswordField
100%
HSTS
40%
Cloudflare Bot Management
40%
Cloudflare
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1730309D12819CDEE16D86D88923B550A254346C3CAA5EFC177ECCEC9EFA8D0B741E45C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

768:IJhL6/ahwk0UCkie6VC+XCkie6VC+qtCkie6VC+oH7:W5+ab0ZDDMDD0EDDk

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:39786:IBASIIkBjcNgMCjAAQhmEGCwLQDHoxwASJ1BuFQVZWFDRM9QQxpIgDqgCsESYCJTshAIop1UggQ0IApSghiGAiBQghMw3CEA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:3f3fffffffffffff
Perceptual Hash:87070707f0f8f8f8
Difference Hash:c0c0804000000000
Wavelet Hash:0f0f0f0f0f0f0f0f
Color Hash:#40d22d

Other Hashes

Crop Resistant:c0c0804000000000

Scan History

Scan history not available

Unable to load historical scan data