Security Scan Report: lounge.learningcaregroup.com

Redirected to:
https://login.microsoftonline.com/352f66c0-6eb7-46ff-b4ed-80ed52500c89...
Site favicon
Submitted: Jun 24, 2026, 8:02:21 AMCompleted: Jun 24, 2026, 8:03:31 AMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 3 countries across 4 domains to perform 2 HTTP transactions. The main domain is login.microsoftonline.com and was registered NaN years ago.

Submitted URL: https://lounge.learningcaregroup.com

Effective URL: https://login.microsoftonline.com/352f66c0-6eb7-46ff-b4ed-80ed52500c89/oauth2/v2.0/authorize?client_id=e1beb23c-8032-4255-bb2e-eb2fd5856521&redirect_uri=https%3a%2f%2flounge.learningcaregroup.com%2fSitefinity%2fAuthenticate%2fOpenID%2fsignin-custom&response_mode=form_post&response_type=id_token&scope=openid+profile+email&state=OpenIdConnect.AuthenticationProperties%3dZsCA0fcc53UOhe49UbCjAX5RqrGu5BfsssCYGMXS64Ci6wA-b1FjRhQ2bajsjQ4_5alDekjQkPSUSYeydcZGfrJguLAha8fPpNdwaUCzsSHXKQ8R9pbqL7kO73R3GoqgU6wHqMYwvj5Zv3rkWD2rfDG2deTy7dsqf5hZGGuj2Ad2o9wzj7K0EMzMaXTr91kN9iSD7B1iUZP4E5CZkR5r0tnp-ksde1OT27tV4O7WSszeORCnKx_34CtLdOgx3X4Go2EBVyaF_10s8g5ZzrWeDuscpPahd_C_83___dlgBEvZwDMiKXt96weBjZk_aqCMySh4k1nqiLXQlioIMH5Us2-tbxWAbiYrwpLzNXTZWs2kc-JussO0agGv2yr6a0J8JBzCBw&nonce=639178849446124357.NWZjNDZjMDMtOTM3OS00ZmI2LTliZjAtYTM0ZWZkYmZlOTE3ZmJiZTZlZmYtODI5Mi00YjkwLWE1ZjEtYzlkZWZjZGU1Yzhi&sso_reload=trueRedirected

The Cisco Umbrella rank of the primary domain is #73,236 of the top 1 million websites

AI Security Verdict

Low Risk

Confidence: 92%

2
Risk Score

The page impersonates Microsoft, collects credentials via a login form that posts to an external domain, and exhibits high‑risk obfuscation – confirmed phishing scam.

Risk Factors
Brand impersonation of Microsoft on a non‑Microsoft domain
Credential collection form with password field
External form submission to a different domain
Multiple redirects (4) indicating possible redirect chaining
High JavaScript obfuscation (function() constructors, base64, charcode manipulation)
Safety Factors
Page served from an identity-provider sign-in endpoint (login.microsoftonline.com); a relying-party brand and login form here are normal SSO, not impersonation — risk clamped from 10 to 2
Domain age information unavailable

Details

Page Title

Sign in to your account

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(37%)

Domain Information

The domain name 'lounge.learningcaregroup.com' uses the commercial generic top-level domain (.com) with subdomain 'lounge'. Its registrable label 'learningcaregroup' stretches across 17 characters holding 7 vowels versus 10 consonants. Breaking it apart gives three words: learning, care, group. The median word length lands at five characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://lounge.learningcaregroup.com

Page Load Overview

2.25s
Total Load Time
20
HTTP Requests
5
Domains
469 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:308 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software37% confidence
Type: webapp
Method: ml+structural

All Detected Categories

technology software
37%
education learning
36%
healthcare medical
33%

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
513.107.246.44United States
AS8075Microsoft Corporation
540.126.32.133Amsterdam, North Holland, Netherlands
AS8075Microsoft Corporation
565.52.200.232Chicago, Illinois, United States
AS8075Microsoft Corporation
540.126.31.1Dublin, Leinster, Ireland
AS8075Microsoft Corporation
204--

Detected Technologies4

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T126936BD97EA21D37838940B5B5BA3E02AF366A03984CDD60F15C8C843FEA75E8237557

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:DxbC8GLG27rvQrvbD2+L62qOjrvNfrvOrvE62WrvVHCqocIZ9Tjuokmap5vPoMLZ:Q8g+L7qIciqea/AXC

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:89148:xRbsBlNG0bcReeQDK4eBQCmYI4AGSACSAQSQQBGWgYhL5gKgEMGgbAIEymJQjKhYQSGgWJFkqoiAkAlmjKJrI3LIB1aCAoLf

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:00383b3327277f7f
Perceptual Hash:8759587366cc5933
Difference Hash:88e0d2e7cdcee6e6
Wavelet Hash:00383b33272f373f
Color Hash:#2d3c86

Other Hashes

Crop Resistant:88e0d2e7cdcee6e6

Scan History

Scan history not available

Unable to load historical scan data