Phishing Analysis
Detailed analysis of captured phishing page
Visual Capture
Detection Info
http://m.hf839.com
Detected Brand
Atletico Madrid
Country
International
Confidence
100%
HTTP Status
200
Report ID
07c54ca3-444…
Analyzed
2025-12-25 01:24
Final URL (after redirects)
http://m.hf839.com/
Content Hashes (HTML Similarity)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1AE72B932003DEA6B0AA252E5FEE45BDEE75A51DCCF670F2192E4879D8EC5D78CC11089 |
|
CONTENT
ssdeep
|
384:MwGL9fhC9fYOp/4GkHDbUD2XrgJ8PSQhJbaPLxfF66:CzSp/DSrcIhJWj66 |
Visual Hashes (Screenshot Similarity)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
92699a32398ecf33 |
|
VISUAL
aHash
|
7c04383c003c3c3c |
|
VISUAL
dHash
|
68d870708dede869 |
|
VISUAL
wHash
|
ff2c3c3c043c3c3c |
Code Analysis
Risk Score
70/100
Threat Level
CRITICAL
⚠️ Phishing Confirmed
🎣 Credential Harvester
🎣 OTP Stealer
🎣 Personal Info
🔬 Threat Analysis Report
• Threat: Brand impersonation and redirection to a gambling/casino website.
• Target: Users interested in Atletico Madrid.
• Method: Impersonating Atletico Madrid to lure users to a suspicious site.
• Exfil: Likely redirects to a gambling platform. Data not directly exfiltrated, but user is directed to potentially malicious website.
• Indicators: New domain, mismatch with official Atletico Madrid domain, uses the Atletico Madrid logo.
• Risk: HIGH - Brand impersonation leading to potential fraud/malware exposure.
Similar Websites
Pages with identical visual appearance (based on perceptual hash)
Scan History for m.hf839.com
Found 2 other scans for this domain
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.