ScanMalware.com

Security Scan Report: admin.exchange.microsoft.com

Redirected to: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=497effe9-df71-4043-a8bb-14cf78c4b63b&redirect_uri=https%3A%2F%2Fadmin.exchange.microsoft.com%2Fsignin-oidc&response_type=code&scope=openid%20profile%20offline_access&code_challenge=wWIhLQnXkqYJKI0qSp83s3t8uLH7VIyQXQFOwqfFW78&code_challenge_method=S256&response_mode=form_post&nonce=638997131723246865.MzNmZjJlMjAtNzVjYy00NjJmLWI3YTItZjYzNDg5YzBhZDEyOTdkNWJhNDMtNGU2Yy00MjlmLTgzZGUtYmMzMDE1NWRlY2U3&client_info=1&x-client-brkrver=IDWeb.3.8.4.0&state=CfDJ8N659dvgFVVBuyJRajyuviz_tr14YUl9id5khlh6PwHlLyORfAGOoBqagetos8qdQ4NRNwIY80aZZLDzsTsWQirUrHmbYWE-l2xgS7wLIsadZUJ-w39ZWnt_9KQlxInMGsj2eV2vx_NLD1oVDuiyLC3IjenRbtHuHMpOtZCnPDJQ1J6fkIXMpV3ac-9VzA7Y5yaHEYswGhfzIg1YhPMXKyWEMkz6FElCVuDKIPsTsffQPqtCaGBI4eUWOF_HMtgwIdagmcsRdd71jYvIcR98I1Yg6kk6uj4ckT4sL208fnmqMP8XquKFPtIWXBReby6JCFdITzLannDNLDshlksmOxPzPPYZww6lqYGsJzGuiThkOXUENyVTePTYmZ49cTDxywhLqWFsyHmwaInn6rGdb5E&x-client-SKU=ID_NET8_0&x-client-ver=8.9.0.0&sso_reload=true

Submitted: Nov 26, 2025, 12:15:36 AMCompleted: Nov 26, 2025, 12:20:05 AMpubliccompleted
Loading additional data...

Summary

This website contacted 32 IPs in 0 countries across 5 domains to perform 17 HTTP transactions. The main domain is login.microsoftonline.com.

Submitted URL: https://admin.exchange.microsoft.com/

Effective URL: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=497effe9-df71-4043-a8bb-14cf78c4b63b&redirect_uri=https%3A%2F%2Fadmin.exchange.microsoft.com%2Fsignin-oidc&response_type=code&scope=openid%20profile%20offline_access&code_challenge=wWIhLQnXkqYJKI0qSp83s3t8uLH7VIyQXQFOwqfFW78&code_challenge_method=S256&response_mode=form_post&nonce=638997131723246865.MzNmZjJlMjAtNzVjYy00NjJmLWI3YTItZjYzNDg5YzBhZDEyOTdkNWJhNDMtNGU2Yy00MjlmLTgzZGUtYmMzMDE1NWRlY2U3&client_info=1&x-client-brkrver=IDWeb.3.8.4.0&state=CfDJ8N659dvgFVVBuyJRajyuviz_tr14YUl9id5khlh6PwHlLyORfAGOoBqagetos8qdQ4NRNwIY80aZZLDzsTsWQirUrHmbYWE-l2xgS7wLIsadZUJ-w39ZWnt_9KQlxInMGsj2eV2vx_NLD1oVDuiyLC3IjenRbtHuHMpOtZCnPDJQ1J6fkIXMpV3ac-9VzA7Y5yaHEYswGhfzIg1YhPMXKyWEMkz6FElCVuDKIPsTsffQPqtCaGBI4eUWOF_HMtgwIdagmcsRdd71jYvIcR98I1Yg6kk6uj4ckT4sL208fnmqMP8XquKFPtIWXBReby6JCFdITzLannDNLDshlksmOxPzPPYZww6lqYGsJzGuiThkOXUENyVTePTYmZ49cTDxywhLqWFsyHmwaInn6rGdb5E&x-client-SKU=ID_NET8_0&x-client-ver=8.9.0.0&sso_reload=trueRedirected

The Cisco Umbrella rank of the primary domain is #3 of the top 1 million websitesTop 100 Site

AI Security Verdict

AI analysis unavailable for this scan

Details

Page Title

Sign in to your account

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

unknown

(0%)

Domain Information

Within the commercial generic top-level domain (.com), 'admin.exchange.microsoft.com' is registered with subdomain 'admin.exchange'. The second-level label 'microsoft' is 9 characters long with three vowels and 6 consonants. Breaking it apart gives 1 word: microsoft. The median word length lands at nine characters. No strong language cues emerged from the frequency lists.

Screenshot

Security scan screenshot of https://admin.exchange.microsoft.com/

Page Load Overview

0.79s
Total Load Time
17
HTTP Requests
5
Domains
462 KB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:109 chars
Detector Agreement:100%

Website Classification

Primary Category

unknown0% confidence
Type: webapp
Method: structural

All Detected Categories

No categories detected

Detected Features

Login Form
Search

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
1740.126.31.71UnknownUnknown
1113.107.213.44UnknownUnknown
320.190.159.0UnknownUnknown
120.190.160.65UnknownUnknown
12.16.241.211UnknownUnknown
020.190.159.23UnknownUnknown
020.190.160.66UnknownUnknown
040.126.31.73UnknownUnknown
013.107.246.44UnknownUnknown
02a02:26f0:3500:c::5c7b:6813UnknownUnknown
1732--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T117835AE97FA31D37878645B5B5756E02AB3A4A438D4CDE64F14CC8882FEAB0C8127593

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

1536:lPs8GLGG1j1jNj1jTie7j1jAj1jrj1jXj1jARORUzTEyqU6MVnvnaloMPbhEfCik:xs8m1V1nie31Q1j1X1CORTyS2a16C

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:81845:KiGOMCSAGI8gQcuxBvNHICgICCTIVApBmdSrCCsp0chAAgIBXICAIhgMAASgQBQAIlbAJsBAT2RKVmFICjAfAYGGYwlmj0AQ

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:3c1e1e7f33734f30
Perceptual Hash:8d12526d67926d6d
Difference Hash:d8b0b0d9c6e6d9d5
Wavelet Hash:3c1e1e3f33330f30
Color Hash:#2d5ed2

Other Hashes

Crop Resistant:d8b0b0d9c6e6d9d5

Scan History

Scan history not available

Unable to load historical scan data