Phishing Analysis
Detailed analysis of captured phishing page
Visual Capture
Detection Info
http://tdesktop.telega.one/current4
Detected Brand
Telegram
Country
International
Confidence
95%
HTTP Status
200
Report ID
0781853f-d41…
Analyzed
2026-01-06 03:38
Final URL (after redirects)
https://telega.one/current4
Content Hashes (HTML Similarity)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T176E1C7E38320845D5BA7C569EF17F059E1A3D0D7F5292E8092DA9E6F94C3DF0E823A11 |
|
CONTENT
ssdeep
|
192:KYsGZBqZ5SqugxuOoRnigni6U3qV0OKPGj:KYsoBshVVoPOqVbe6 |
Visual Hashes (Screenshot Similarity)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
9c9cccc0f3e3e3c0 |
|
VISUAL
aHash
|
7f1f1f000000f0fc |
|
VISUAL
dHash
|
f2b2badefec0c0c0 |
|
VISUAL
wHash
|
ff1f1f020060f8fc |
|
VISUAL
colorHash
|
061c8000000 |
|
VISUAL
cropResistant
|
f2b2badefec0c0c0 |
Code Analysis
Threat Level
ALTO
⚠️ Phishing Confirmed
🔬 Threat Analysis Report
• Threat: Phishing attempt impersonating Telegram
• Target: Telegram users worldwide
• Method: Encourages users to contact a Telegram handle (@current4)
• Exfil: Data likely sent to the Telegram handle
• Indicators: Domain mismatch, suspicious URL, lack of official branding
• Risk: HIGH - Potential for credential theft or malware distribution
Similar Websites
Pages with identical visual appearance (based on perceptual hash)
No screenshot
Telegram
https://tx.me/s/taslitv/2
Jan 04, 2026
No screenshot
Telegram
https://tx.me/s/smtas2016
Jan 04, 2026
No screenshot
Telegram
https://telegram.dog/ims_tas/2
Jan 04, 2026
No screenshot
Telegram
https://telega.one/s/rtasenka
Jan 04, 2026
No screenshot
Telegram
https://telega.one/current4
Jan 04, 2026
Scan History for tdesktop.telega.one
Found 1 other scan for this domain
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.