ScanMalware.com

Security Scan Report: wenet.festo.online

Redirected to:
https://login.microsoftonline.com/a1ae89fb-21b9-40bf-9d82-a10ae85a2407...
Submitted: Apr 10, 2026, 8:02:38 AMCompleted: Apr 10, 2026, 8:03:46 AMpubliccompleted
Loading additional data...

Summary

This website contacted 6 IPs in 4 countries across 7 domains to perform 36 HTTP transactions. The main domain is login.microsoftonline.com and was registered NaN years ago.

Submitted URL: https://wenet.festo.online

Effective URL: https://login.microsoftonline.com/a1ae89fb-21b9-40bf-9d82-a10ae85a2407/oauth2/v2.0/authorize?client_id=554ac960-2ddd-48fb-941f-329186ea815b&response_type=code&scope=openid%20email%20profile&redirect_uri=https%3A//wenet.festo.online/openid-connect/wenet_prod&state=1-f9s_XFcKI39z2rZJIyqoCcw1ZveAS05woZKi17kjk&sso_reload=trueRedirected

The Cisco Umbrella rank of the primary domain is #143,535 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 78%

7
Risk Score

Impersonates FESTO login on a low‑rank domain; likely a credential‑phishing page.

Risk Factors
Brand impersonation on a low‑ranking, non‑official domain
Cross‑origin credential form to Microsoft login endpoint
Highly obfuscated JavaScript code
Domain age information unavailable

Details

Page Title

Sign in to your account

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

The domain name 'wenet.festo.online' uses the modern generic top-level domain (.online) with subdomain 'wenet'. The registrable portion 'festo' spans 5 characters holding 2 vowels versus three consonants. Splitting it apart reveals two words: fes, to. Median word length is 2.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://wenet.festo.online

Page Load Overview

0.72s
Total Load Time
18
HTTP Requests
5
Domains
468 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:109 chars
Detector Agreement:67%

Website Classification

Primary Category

unknown0% confidence
Type: webapp
Method: structural

All Detected Categories

No categories detected

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
313.69.239.72Ireland
AS8075
323.200.24.152United States
AS20940
340.126.32.133NetherlandsUnknown
34.182.56.141Frankfurt am Main, Hesse, Germany
AS8075Microsoft Corporation
340.126.31.129Dublin, Leinster, Ireland
AS8075Microsoft Corporation
313.107.246.44United States
AS8075Microsoft Corporation
186--

Detected Technologies7

X-UA-Compatible
100%
PasswordField
100%
Meta-Refresh-Redirect
100%
PHP
50%
Ubuntu
40%
Drupal
40%
Ghost
15%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T123835CDA7EB32D37824A45B4A4B67D029E3A59078D4CCDA4F19CC8882FFA75D8137607

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:je8GLG22yfFLADoIyEk77gx2xpTvPoMmCBSExe4ieC:i8TyfFcDJ32RAqC

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:81182:KAEGcIQgAOhCQSYASIcESc2QKMxjERj+hAhQkFQIMH4BDGIIBLAkIhqEDIYwaECASrrrKABeEdECjIwpw6DQhYIMADIsh7OT

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0000181818180000
Perceptual Hash:8cd93366cc9999cc
Difference Hash:100cb2b2b2b24c31
Wavelet Hash:f0f0fcfc38380001
Color Hash:#2d3786

Other Hashes

Crop Resistant:9a386ab2b6b28382,82a2c2b2b2e280a0,100cb2b2b2b24c31

Scan History

Scan history not available

Unable to load historical scan data