Phishing Analysis
Detailed analysis of captured phishing page
Visual Capture
Detection Info
https://gartechnology.tech/public/
Detected Brand
Fastway Couriers
Country
Unknown
Confidence
95%
HTTP Status
200
Report ID
0743c3db-c1f…
Analyzed
2026-06-17 13:24
Content Hashes (HTML Similarity)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T15331967150928E1EB38283A9CFB0B68983D4D944C7161F1C60E476FD0ECDE48C8BB15C |
|
CONTENT
ssdeep
|
24:haWCMespQQs+Lnz/OCavs5vqwJatEqLrqTPPC+bzQgUZq0ff++xMJTb:vpQR0nzWRs5CMaSPT5bzQlQsS |
Visual Hashes (Screenshot Similarity)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
b9f44076b569360b |
|
VISUAL
aHash
|
471f0f0f0f07090f |
|
VISUAL
dHash
|
9ebe7fbf3d3f737b |
|
VISUAL
wHash
|
475f0f0f0f07190f |
|
VISUAL
colorHash
|
06203000080 |
|
VISUAL
cropResistant
|
fafaf0f0c0e00ce6,daeadbdbdbb6c3c9,c6de7e961f1d3e36,9f9b9b8b0b0f4f4b,ee6f73472f270706 |
Code Analysis
Threat Level
ALTO
⚠️ Phishing Confirmed
📡 API Calls Detected
- ./6563738/
📊 Risk Score Breakdown
Total Risk Score
70/100
🔬 Comprehensive Threat Analysis
Threat Type
Fastway Couriers Phishing Landing Page
Target
Fastway Couriers users
Attack Method
Phishing webpage
Exfiltration Channel
Form submission (backend endpoint not detected - likely JavaScript-based)
Risk Assessment
LOW - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)
🏢 Brand Impersonation Analysis
Impersonated Brand
Fastway Couriers
Official Website
N/A
Fake Service
Credential harvesting service
⚔️ Attack Methodology
Primary Method: Search Engine Manipulation
Fake Fastway Couriers site positioned to capture victims through SEO tactics, typosquatting, or paid advertising. Serves as entry point for multi-stage attacks including credential theft and malware distribution.
Secondary Method: Client-Side Form Interception
JavaScript intercepts form submissions before they reach the fake backend. This allows real-time credential harvesting and validation without server round-trips.
🌐 Infrastructure Indicators of Compromise
Domain Information
Domain
gartechnology.tech
Registered
2026-01-10 23:35:35+00:00
Registrar
ENOM, INC.
Status
Active (157 days old)
Hosting Information
Provider
ENOM, INC.
ASN
🤖 AI-Extracted Threat Intelligence
Similar Websites
Pages with identical visual appearance (based on perceptual hash)
Scan History for gartechnology.tech
Found 2 other scans for this domain
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.