ScanMalware.com

Security Scan Report: gec4.dev.lululemon.app

Redirected to: https://login.microsoftonline.com/59762c14-55e8-4b58-806e-f6cc47d75b19/oauth2/authorize?response_type=code&client_id=a0801616-58ba-40fc-8704-178ee22837e7&scope=openid&nonce=31687ede-5c58-400a-b110-264f3bd6ff5e&redirect_uri=https%3a%2f%2fgec4.dev.lululemon.app%2f&state=AppProxyState%3a%7b%22InvalidTokenRetry%22%3anull%2c%22IsMsofba%22%3afalse%2c%22OriginalRawUrl%22%3a%22https%3a%5c%2f%5c%2fgec4.dev.lululemon.app%5c%2f%22%2c%22RequestProfileId%22%3anull%2c%22SessionId%22%3a%227a67f91b-404f-4e19-b770-f26063bdcdda%22%7d%23EndOfStateParam%23&client-request-id=7a67f91b-404f-4e19-b770-f26063bdcdda&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&sso_reload=true

Site favicon
Submitted: Jan 16, 2026, 11:22:11 AMCompleted: Jan 16, 2026, 11:23:31 AMpubliccompleted
Loading additional data...

Summary

This website contacted 7 IPs in 3 countries across 8 domains to perform 44 HTTP transactions. The main domain is login.microsoftonline.com and was registered NaN years ago.

Submitted URL: https://gec4.dev.lululemon.app

Effective URL: https://login.microsoftonline.com/59762c14-55e8-4b58-806e-f6cc47d75b19/oauth2/authorize?response_type=code&client_id=a0801616-58ba-40fc-8704-178ee22837e7&scope=openid&nonce=31687ede-5c58-400a-b110-264f3bd6ff5e&redirect_uri=https%3a%2f%2fgec4.dev.lululemon.app%2f&state=AppProxyState%3a%7b%22InvalidTokenRetry%22%3anull%2c%22IsMsofba%22%3afalse%2c%22OriginalRawUrl%22%3a%22https%3a%5c%2f%5c%2fgec4.dev.lululemon.app%5c%2f%22%2c%22RequestProfileId%22%3anull%2c%22SessionId%22%3a%227a67f91b-404f-4e19-b770-f26063bdcdda%22%7d%23EndOfStateParam%23&client-request-id=7a67f91b-404f-4e19-b770-f26063bdcdda&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&sso_reload=trueRedirected

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

High risk phishing site impersonating lululemon login

Risk Factors
Brand impersonation (lululemon) on an unranked, non‑official domain
Credential harvesting login form (email/password) on suspicious domain
Unranked domain with brand claim increases phishing likelihood
Domain age information unavailable

Details

Page Title

Sign in to your account

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

The domain 'gec4.dev.lululemon.app' uses the application-focused generic top-level domain (.app) and includes subdomain 'gec4.dev'. The registrable portion 'lululemon' spans 9 characters containing 4 vowels alongside five consonants. Segmentation suggests 2 words: lulu, lemon. The median word length lands at 4.5 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://gec4.dev.lululemon.app

Page Load Overview

6.76s
Total Load Time
30
HTTP Requests
7
Domains
1.1 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:109 chars
Detector Agreement:67%

Website Classification

Primary Category

unknown0% confidence
Type: webapp
Method: structural

All Detected Categories

No categories detected

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
620.190.159.131Germany
AS8075
4172.172.255.228Washington, Virginia, United States
AS8075MICROSOFT-CORP-MSN-AS-BLOCK
413.107.246.44United StatesUnknown
423.207.210.137NetherlandsUnknown
420.189.173.26UnknownUnknown
420.190.159.71UnknownUnknown
440.126.31.71UnknownUnknown
307--

Detected Technologies4

X-UA-Compatible
100%
PasswordField
100%
Meta-Refresh-Redirect
100%
Ghost
15%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T192834BDA7EB32D37868A45B4B4B53E029A3A5D038848CDA4B19CCD942FFB34D9163617

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:jJNo8GLGGOucuVB/I4ozTEyqU6MVnvnaloMPrtE9A9i1C:FNo8TucuVBg4XyS2dC

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:81887:JKBCCCNBYBgIUBcrEhQIYqOBFEIUgpUiEgLUQSJkgQBRChANSBaEdsCCUhJsgQaIF8IQgHIAGFSABRBEosIymLBmFiB4kFBS

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:f08018393b390908
Perceptual Hash:89f532e3cd589d18
Difference Hash:801c3272f273b1f5
Wavelet Hash:f8c6193b3b39190d
Color Hash:#78733a

Other Hashes

Crop Resistant:f21cfef2b2b28382,8c80cab0b0c08038,801c3272f273b1f5

Scan History

Scan history not available

Unable to load historical scan data