ScanMalware.com

Security Scan Report: changemtg.nextwavecrm.com

Redirected to: https://chm.okta.com/app/chm_nextwave_1/exktdlyoyxd3ZspNa4x7/sso/saml?SAMLRequest=hZLBbsIwEER%2FJfI9MSRAwAIkCqqKRNuo0B64IOMsYOHYqdeh4e%2BbBFrRC72Odjzzdj1EnqmcTQp30G%2FwWQA6bz4bkU0buNhF%2Fa3f24ZdvxPHqd%2BPotgP03Qr4sEu7XcGxPsAi9LoEQmDFvHmiAXMNTquXSW1wp7fivxwsGrHrNtlnSjohYM18WZVitTcNc6DczkySsUhC8zR8UCYjPI8r4WNhtJ98RNs2hTKo0vV2ZzLNFpj%2FsI7ZUwRDa0JiPdorIAGY0R2XCHUdRKOKE%2FwqyTWOCOMepA6lXo%2FIoXVzHCUyDTPAJkTbDl5XrAKh20vQ8ieVqvET16XK%2BJNEMHWvadGY5GBXYI9SQHvb4tbEq73kLl98FNf2KzBuk4%2FmxQUrctehQBPgi7RLMxeauKVmdLImsvcr5hfech4WE%2Bz5gD2xn%2Ffzn9oyPjf7kN6k3CJy9lL9eR8lhglxdmbKGW%2Bpha4qxbubFHtm44vtr8fbPwN

Submitted: Mar 29, 2026, 5:55:33 PMCompleted: Mar 29, 2026, 5:56:45 PMpubliccompleted
Loading additional data...

Summary

This website contacted 3 IPs in 1 country across 3 domains to perform 67 HTTP transactions. The main domain is chm.okta.com and was registered NaN years ago.

Submitted URL: https://changemtg.nextwavecrm.com

Effective URL: https://chm.okta.com/app/chm_nextwave_1/exktdlyoyxd3ZspNa4x7/sso/saml?SAMLRequest=hZLBbsIwEER%2FJfI9MSRAwAIkCqqKRNuo0B64IOMsYOHYqdeh4e%2BbBFrRC72Odjzzdj1EnqmcTQp30G%2FwWQA6bz4bkU0buNhF%2Fa3f24ZdvxPHqd%2BPotgP03Qr4sEu7XcGxPsAi9LoEQmDFvHmiAXMNTquXSW1wp7fivxwsGrHrNtlnSjohYM18WZVitTcNc6DczkySsUhC8zR8UCYjPI8r4WNhtJ98RNs2hTKo0vV2ZzLNFpj%2FsI7ZUwRDa0JiPdorIAGY0R2XCHUdRKOKE%2FwqyTWOCOMepA6lXo%2FIoXVzHCUyDTPAJkTbDl5XrAKh20vQ8ieVqvET16XK%2BJNEMHWvadGY5GBXYI9SQHvb4tbEq73kLl98FNf2KzBuk4%2FmxQUrctehQBPgi7RLMxeauKVmdLImsvcr5hfech4WE%2Bz5gD2xn%2Ffzn9oyPjf7kN6k3CJy9lL9eR8lhglxdmbKGW%2Bpha4qxbubFHtm44vtr8fbPwNRedirected

The Cisco Umbrella rank of the primary domain is #355,721 of the top 1 million websites

AI Security Verdict

Safe Website

Confidence: 95%

0
Risk Score

No threats detected; the page is a standard access‑forbidden response.

Safety Factors
Well‑established domain (>20 years old)
HTTPS connection
Redirects to a legitimate SSO provider (Okta)
No credential or payment forms present
No malicious Indicators of Compromise or IDS alerts
Domain age information unavailable

Details

Page Title

Change Lending - Access Forbidden

Scan Type

public

Language

🇺🇸

English

(61% confidence)

Category

finance banking

(72%)

Domain Information

Within the commercial generic top-level domain (.com), 'changemtg.nextwavecrm.com' is registered, featuring subdomain 'changemtg'. The second-level label 'nextwavecrm' is 11 characters long with 3 vowels and eight consonants. Splitting it apart reveals four words: next, wave, cr, m. Median word length comes out to 3 characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://changemtg.nextwavecrm.com

Page Load Overview

1.05s
Total Load Time
4
HTTP Requests
1
Domains
5 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:61%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:61%
Script Type:Latin
Text Length:121 chars
Detector Agreement:100%

Website Classification

Primary Category

finance banking72% confidence
Type: static
Method: ml+structural

All Detected Categories

finance banking
72%
government public service
34%
adult content
34%
education learning
29%

Detected Features

No structural features detected

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
275.2.58.245United States
AS14618
113.33.187.61United States
AS14618
154.208.160.45Ashburn, Virginia, United States
AS14618Amazon.com, Inc.
43--

Detected Technologies1

HSTS
40%

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T1B641452A00E7492B211311A0B8E67B06FD99A817D71ACE407EBC07F59FD9D96C87725C

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

48:63Ml4b95TtLx5SJZ7evHJ/BmFQ+UJ7c5+CyU/TjBTuVD:wMKx5TtXSJsvmp+CyWjBKVD

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:2268:BAAABACBAAQBAEAABJkBSAAAkAAAAAAAYAAOMAUkAAACCAEAAAEACAAABAQMAcAAAAIAAAABGAgAAAgAEgEIAgGAAAgQAZIA

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ffe7e7ffffffffff
Perceptual Hash:e6669999998c6666
Difference Hash:1028282800000000
Wavelet Hash:1f07273f1f070303
Color Hash:#935b1f

Other Hashes

Crop Resistant:1028282800000000

Scan History

Scan history not available

Unable to load historical scan data