ScanMalware.com

Security Scan Report: beonemed.degreed.app

Redirected to:
https://beonemed.degreed.app/account/login?ReturnUrl=/me
Site favicon
Submitted: May 18, 2026, 11:37:35 AMCompleted: May 18, 2026, 11:40:22 AMpubliccompleted
Loading additional data...

Summary

This website contacted 8 IPs in 2 countries across 8 domains to perform 348 HTTP transactions. The main domain is beonemed.degreed.app and was registered NaN years ago.

Submitted URL: https://beonemed.degreed.app

Effective URL: https://beonemed.degreed.app/account/login?ReturnUrl=/meRedirected

The Cisco Umbrella rank of the primary domain is #606,441 of the top 1 million websites

AI Security Verdict

Confirmed Scam

Confidence: 92%

9
Risk Score

The site impersonates Degreed, has a critical C2 beacon alert, and low reputation – confirmed scam.

Risk Factors
Brand mismatch with meta tags
Critical IDS malware/C2 alert
Low domain reputation rank
Suspicious login path without visible form
Presence of external analytics domains unrelated to brand
Domain age information unavailable

Details

Bot Protection Detected

This website is protected by captcha bot protection. Our scanner was challenged or blocked during access.

Page Title

N/A

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

The domain name 'beonemed.degreed.app' uses the application-focused generic top-level domain (.app), featuring subdomain 'beonemed'. Count 7 characters in 'degreed' holding three vowels versus four consonants. Breaking it apart gives two words: degree, d. Expect 3.5 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://beonemed.degreed.app

Page Load Overview

90.14s
Total Load Time
165
HTTP Requests
3
Domains
103 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en-US
Text Length:38 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: dynamic
Method: structural

All Detected Categories

No categories detected

Detected Features

Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
25150.171.109.101United States
AS8075Microsoft Corporation
202.16.168.114Frankfurt am Main, Hesse, Germany
AS20940Akamai International B.V.
20142.251.20.94United States
AS15169Google LLC
20146.75.121.55Frankfurt am Main, Hesse, Germany
AS54113Fastly, Inc.
20150.171.109.100United States
AS8075Microsoft Corporation
20142.251.150.119United States
AS15169Google LLC
2054.165.198.40Ashburn, Virginia, United States
AS14618Amazon.com, Inc.
20150.171.109.193United States
AS8075Microsoft Corporation
1658--

Detected Technologies5

X-UA-Compatible
100%
Azure
50%
HSTS
40%
Azure Front Door
40%
AngularJS
30%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T15E223D774D5490340902557ABEDDB2086965451F9801E8A0B1DCC5DCAFC6FAB8CE3F6E

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

192:70OXSbyfpFJJi0tBRJ8eujWQ3+92UDb9sUs5n1/H:708sjBO9uv

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:9948:CuB0eAkDKYYU0AOBBkFFJBIDCDKASIg4ZIReABIAKgysiZDVqwiRB2BQIgJlKIcDSYEY0UoBQAfgqfAQA9AMIKADEg0DiAkg

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:fffff9f9f9f9ffff
Perceptual Hash:e9b5964a69944b69
Difference Hash:0200030303030002
Wavelet Hash:0c0c090909090f0f
Color Hash:#d2e06c

Other Hashes

Crop Resistant:0200030303030002

Scan History

Scan history not available

Unable to load historical scan data