ScanMalware.com

Security Scan Report: sso.geiwohuo.com

Redirected to: https://sso.geiwohuo.com/#/login/GMPSSO/aHR0cHM6Ly9zc28uZ2Vpd29odW8uY29tLw==

Site favicon
Submitted: Feb 28, 2026, 2:05:12 AMCompleted: Feb 28, 2026, 2:06:54 AMpubliccompleted
Loading additional data...

Summary

This website contacted 4 IPs in 2 countries across 6 domains to perform 1 HTTP transaction. The main domain is sso.geiwohuo.com and was registered NaN years ago.

Submitted URL: https://sso.geiwohuo.com

Effective URL: https://sso.geiwohuo.com/#/login/GMPSSO/aHR0cHM6Ly9zc28uZ2Vpd29odW8uY29tLw==Redirected

The Cisco Umbrella rank of the primary domain is #415,726 of the top 1 million websites

AI Security Verdict

High Risk

Confidence: 92%

8
Risk Score

Impersonates SHEIN and harvests passwords; treat as phishing.

Risk Factors
Credential harvesting form (password‑only input)
Brand impersonation of SHEIN on unrelated domain
Low ranking domain for brand claim
Password field without accompanying username/email field
Domain age information unavailable

Details

Page Title

SHEIN全球商家中心

Scan Type

public

Language

🇨🇳

Chinese

(60% confidence)

Category

e-commerce shopping

(47%)

Domain Information

Within the commercial generic top-level domain (.com), 'sso.geiwohuo.com' is registered; it also runs on subdomain 'sso'. Its registrable label 'geiwohuo' stretches across 8 characters split between 5 vowels and three consonants. It segments into three words: ge, iwo, huo. Expect three characters per word on average. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://sso.geiwohuo.com

Page Load Overview

3.02s
Total Load Time
90
HTTP Requests
11
Domains
2.1 MB
Total Size

Language Analysis

Primary Language

🇨🇳Chinese
Code: zh
Confidence:60%
Script:Han
Direction:ltr

Detection Details

Language Code:zh
Detection Confidence:60%
Script Type:Han
HTML Lang Attribute:zh
Text Length:164 chars
Detector Agreement:100%

Website Classification

Primary Category

e-commerce shopping47% confidence
Type: static
Method: ml+structural

All Detected Categories

e-commerce shopping
47%
corporate business
28%
government public service
27%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
2423.50.131.136United States
AS15169
22142.251.127.97Sweden
AS20940
223.33.242.225United States
AS16509Amazon.com, Inc.
222.20.143.98UnknownUnknown
904--

Detected Technologies1

GeeTest
30%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1D325D77098E019BE295FE720B6F5DD97B35CE042C9C28FF8B59B61898FC76A410326C5

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

12288:hEEp9ZSJIDx8FQ27jrvZ/NN3iEN2xfX5DxEFX27jrvZ/NN3MgBTCIXMPp:hEEp9LZxvyYXMPp

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:1004644:LAKAQI4AKIIAtTYKCQAQBh4oAEpzQpEhoKBTDjIBEgnFCiMSE6cI7SQwBd1g0LIY2wD4C2RB6FEIBIEYgVgEBSotHBIEJAg0

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:e7ffffffffffffff
Perceptual Hash:b333333333333323
Difference Hash:0800000000000000
Wavelet Hash:273f3f3f00000000
Color Hash:#d27b79

Other Hashes

Crop Resistant:0800000000000000

Scan History

Scan history not available

Unable to load historical scan data