Security Scan Report: htyd.vercel.app

Redirected to:
https://htyd.vercel.app/common/oauth2/v2.0/authorize?client_id=74c3b4b...
Site favicon
Submitted: Jul 2, 2026, 11:52:10 PMCompleted: Jul 2, 2026, 11:53:30 PMpubliccompleted
Loading additional data...

Summary

This website contacted 2 IPs in 1 country across 2 domains to perform 3 HTTP transactions. The main domain is htyd.vercel.app and was registered NaN years ago.

Submitted URL: http://htyd.vercel.app/

Effective URL: https://htyd.vercel.app/common/oauth2/v2.0/authorize?client_id=74c3b4b2-1ce7-4996-82a8-5d492fff94b8&redirect_uri=https%253A%252F%252Foutlook.office.com%252Fmail%252F&response_type=code%2Bid_token&response_mode=form_post&scope=https%253A%252F%252Foutlook.office.com%252F.default%2520openid%2520profile&state=sDlBehLiQ0LMlayOABRO2z3LMHqJN2Rf&nonce=YhpJf10g8DCigEaRQG9RbAoesJwrqUwl&code_challenge=sKywLucfcOnwIrFCfIHPX9oZvlbf3c9Sgvz08L3tvtB&code_challenge_method=S256&prompt=login&login_hint=&domain_hint=&sso_reload=true&client_info=1&x_client_ver=1.0.0&x_client_sku=MSAL.JS&x_client_cpu=x64&x_client_os=Windows&x_client_dm=1&x_ms_lib_ver=2.0.0&session_id=a90ab944-a462-4922-b426-6bfcc071ce10&correlation_id=06e3e10a-f800-4815-bb76-84ab726ea0c2&mscrid=Ojhcpa89pZjou62B&sso_nonce=pI9Vi9ySDbqopEIArDidqr5UJDQl5Hmk&tx=hxXGTEig7tgCvglZ&flowToken=sYEmf4L9d25Ylwd4NjXIQ8pLQ7V05uknLdEP3BcRhodRtn1oVHoZU4ioi87RoTbD&canary=atHjWk1c&hpgact=1800&hpgid=1104&pgid=DstsWebV2&ctx=VqrGgsWxkcV2&opid=GPNqohjq&uaid=sJDUUMNb3eVoNgo6&wctx=yiGjAABETksSizAEUOwUramV&cbcxt=xcMvGlgdN7iLOBte&username=&mkt=en-US&lc=1033&lic=1Redirected

AI Security Verdict

Low Risk

Confidence: 92%

3
Risk Score

Impersonates Microsoft login, uses an unknown Vercel subdomain and matches a known‑attacker IP – high‑risk phishing site.

Risk Factors
Brand impersonation of Microsoft on non‑official domain
Unknown subdomain age on a hosting platform
Threat‑intel IoC match on server IP
Presence of a login‑style form (email field) without password
Loading resources from suspicious external domains (Telegram IP)
Safety Factors
Verdict cited a credential/login form, but DOM analysis found no password field (real or disguised) or payment field, and no other hard signal — credential-phishing framing unsupported; risk adjusted from 8 to 3
Domain age information unavailable

Details

Page Title

Sign in to your account

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

technology software

(64%)

Domain Information

You're looking at domain 'htyd.vercel.app' on the application-focused generic top-level domain (.app) and includes subdomain 'htyd'. The core label 'vercel' covers 6 characters containing 2 vowels alongside four consonants. It segments into two words: ver, cel. Average segment length settles at three characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of http://htyd.vercel.app/

Page Load Overview

1.09s
Total Load Time
12
HTTP Requests
5
Domains
11 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:161 chars
Detector Agreement:100%

Website Classification

Primary Category

technology software64% confidence
Type: static
Method: ml+structural+ocr_tiebreaker

All Detected Categories

technology software
64%
social media network
50%
news media journalism
28%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
6104.18.94.41Cloudflare · WAFUnited States
AS13335Cloudflare, Inc.
6216.198.79.195United States
AS16509Amazon.com, Inc.
122--

Detected Technologies1

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1E85150B56270016F22478DD8BA61BB1DBBEBC309CB03991865FD76E91BC5D88CC67160

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

48:nX+OzyNd755zhD4GJ/cnAv3CS9Mexk2hpXCTnVyRU/:nxG7D54G16AvRMemxVh/

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:2567:AAAAAgIQQgABIQgQAAAAECACARIQAAFiQAQCAAAEIAAATYQFBCEgQYYIgAACAAQQAAAYAAKAAgAAAAQEIIAAAkAQIAgAgCBA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:0000393b37373737
Perceptual Hash:8459747642d95b6e
Difference Hash:88e4f2d3e5e6e6e6
Wavelet Hash:00203b3b373f3737
Color Hash:#931f48

Other Hashes

Crop Resistant:88e4f2d3e5e6e6e6

Scan History

Scan history not available

Unable to load historical scan data