ScanMalware.com

Security Scan Report: msoid.contacto.lu

Redirected to: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=4765445b-32c6-49b0-83e6-1d93765276ca&redirect_uri=https%3A%2F%2Fwww.office.com%2Flandingv2&response_type=code%20id_token&scope=openid%20profile%20https%3A%2F%2Fwww.office.com%2Fv2%2FOfficeHome.All&response_mode=form_post&nonce=639109860503251278.NDIxMGE3YmMtMjJhYS00NWY5LWFiZTMtZGY0OWZiMWZkMWRjNjNiMWRjNzQtZDk0Mi00ZjFmLWFiZWYtYzhhNDZhMmRmYWVj&ui_locales=en-US&mkt=en-US&client-request-id=91a563ea-db45-4c93-a60e-1cdf3462c053&state=mk5zuM9MHGQ7xp1lUcQb5KPzI59dBqmR8wKhSpnnFT9PvUE3_EgUkTrVo5AgJZh5zbUXbzPxztHY4PKbB558yRtD0vQQowsygF3K-lbyjpsqk9fH4KBlLcJp4sKpjobpcXQErNXZ6cZ4EBczlsxFptRPVCG2_sHuu9btscH6lywCfbE4Gy5A56rGT1pTaF5sOkm2aylLzT4swlBZCGR3OcSevYkHnoxlT8o6VOHqOPijCTd8p2a97PDKmH9um29NjsFwYtvnjw4yzzYuMH7ax1wBmtUgl04OSAo2l4QxQCHQ_nZVlidWMHw3PTRZOonzlnVZDvo6mD20OCxnTLWJOXJEw4uiJKvnCHQs2nIA1mRL7b_pjZ0MbMUuX_t5ftFTs7iJNoj5sJ4zqeXH099QWlBVOBbK5csRAW3tqn4VwMY&x-client-SKU=ID_NET8_0&x-client-ver=8.14.0.0&sso_reload=true

Submitted: Apr 5, 2026, 11:40:47 AMCompleted: Apr 5, 2026, 11:41:57 AMpubliccompleted
Loading additional data...

Summary

This website contacted 6 IPs in 2 countries across 6 domains to perform 1 HTTP transaction. The main domain is login.microsoftonline.com and was registered NaN years ago.

Submitted URL: https://msoid.contacto.lu

Effective URL: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=4765445b-32c6-49b0-83e6-1d93765276ca&redirect_uri=https%3A%2F%2Fwww.office.com%2Flandingv2&response_type=code%20id_token&scope=openid%20profile%20https%3A%2F%2Fwww.office.com%2Fv2%2FOfficeHome.All&response_mode=form_post&nonce=639109860503251278.NDIxMGE3YmMtMjJhYS00NWY5LWFiZTMtZGY0OWZiMWZkMWRjNjNiMWRjNzQtZDk0Mi00ZjFmLWFiZWYtYzhhNDZhMmRmYWVj&ui_locales=en-US&mkt=en-US&client-request-id=91a563ea-db45-4c93-a60e-1cdf3462c053&state=mk5zuM9MHGQ7xp1lUcQb5KPzI59dBqmR8wKhSpnnFT9PvUE3_EgUkTrVo5AgJZh5zbUXbzPxztHY4PKbB558yRtD0vQQowsygF3K-lbyjpsqk9fH4KBlLcJp4sKpjobpcXQErNXZ6cZ4EBczlsxFptRPVCG2_sHuu9btscH6lywCfbE4Gy5A56rGT1pTaF5sOkm2aylLzT4swlBZCGR3OcSevYkHnoxlT8o6VOHqOPijCTd8p2a97PDKmH9um29NjsFwYtvnjw4yzzYuMH7ax1wBmtUgl04OSAo2l4QxQCHQ_nZVlidWMHw3PTRZOonzlnVZDvo6mD20OCxnTLWJOXJEw4uiJKvnCHQs2nIA1mRL7b_pjZ0MbMUuX_t5ftFTs7iJNoj5sJ4zqeXH099QWlBVOBbK5csRAW3tqn4VwMY&x-client-SKU=ID_NET8_0&x-client-ver=8.14.0.0&sso_reload=trueRedirected

AI Security Verdict

High Risk

Confidence: 90%

8
Risk Score

Phishing page mimicking Microsoft login; do not enter credentials.

Risk Factors
Brand impersonation (Microsoft) on an unranked domain
Credential‑harvesting login form
Cross‑origin credential submission to a legitimate Microsoft endpoint
Domain age information unavailable

Details

Page Title

Sign in to your account

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

The domain 'msoid.contacto.lu' uses the Luxembourgish country-code top-level domain (.lu) and includes subdomain 'msoid'. Count 8 characters in 'contacto' holding three vowels versus 5 consonants. Breaking it apart gives 2 words: contact, o. Expect 4 characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://msoid.contacto.lu

Page Load Overview

0.86s
Total Load Time
30
HTTP Requests
5
Domains
472 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:133 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: webapp
Method: structural

All Detected Categories

No categories detected

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
513.107.6.156United States
AS8068Microsoft Corporation
520.190.159.2United States
AS8068
513.107.246.44United States
AS8075Microsoft Corporation
520.50.80.210UnknownUnknown
520.190.159.64Dublin, Leinster, Ireland
AS8075Microsoft Corporation
520.190.160.3UnknownUnknown
306--

Detected Technologies4

X-UA-Compatible
100%
PasswordField
100%
Meta-Refresh-Redirect
100%
Ghost
15%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T19C936BCA3EA31C3B874A45B6B8757E02AA365E439D4CCC74F19CC8842FEA74E412B557

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:lc1+n8GLG2Uk+ARRAX05JoIyEk77gx2xpTvPoMmCf4EfIi75GC:a1+n87k+ARRlJJ32RAUIC

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:90469:eeIkANhAZsiAaGGgIiB0MLlHQTiCAFA0Qg8JHIKYiCAEwQgqSWEjQRAVBFKHAJCB4gR0YMIEwdPETQIwAGjQGVHCAEwQqAB6

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0010393b373f373f
Perceptual Hash:845971764699d96e
Difference Hash:88e4d2d3e5e6e6e6
Wavelet Hash:00003b3b373f373f
Color Hash:#79d2bb

Other Hashes

Crop Resistant:88e4d2d3e5e6e6e6

Scan History

Scan history not available

Unable to load historical scan data