Phishing Analysis
Detailed analysis of captured phishing page
Visual Capture
Detection Info
https://astrasolana.com/
Detected Brand
AstraSolana
Country
International
Confidence
100%
HTTP Status
200
Report ID
13fde4fc-31dā¦
Analyzed
2026-06-17 23:48
Final URL (after redirects)
https://www.astrasolana.com/
Content Hashes (HTML Similarity)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1E0B26171B145AD37029792D6B33187AF72E18249CE23072A17FC938D8BF3D94ED26684 |
|
CONTENT
ssdeep
|
384:pOn1tZY/ktaHIbi9oFoolVEtQRGYsIQ2Vl5QKUgAOfDTcAG04QNo69j:pO1tZWktp2oPvGVQUPg7/He/6V |
Visual Hashes (Screenshot Similarity)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
c13e3ec1c1e43b9c |
|
VISUAL
aHash
|
000000787c7c7e60 |
|
VISUAL
dHash
|
966971d0d0c0d4d4 |
|
VISUAL
wHash
|
003c007e7e7c7e76 |
|
VISUAL
colorHash
|
39600000040 |
|
VISUAL
cropResistant
|
f0ce4c252491929a,98188898c1e3d693,14c2ce9715146a23,966971d0d0c0d4d4 |
Code Analysis
Risk Score
70/100
Threat Level
ALTO
ā ļø Phishing Confirmed
š£ Credential Harvester
š£ OTP Stealer
š£ Banking
š¬ Threat Analysis Report
ā¢ Threat: Cryptocurrency investment fraud
ā¢ Target: Retail crypto investors
ā¢ Method: Fake exchange landing page
ā¢ Exfil: Wallet connection or account registration
ā¢ Indicators: Shutterstock watermarked imagery
ā¢ Risk: High
š Risk Score Breakdown
Total Risk Score
90/100
Contributing Factors
Visual Quality
Visible watermarks on site assets
Reputation
Domain has no history or association with known financial entities
š¬ Comprehensive Threat Analysis
Threat Type
Banking Credential Harvester
Target
AstraSolana users (International)
Attack Method
Brand impersonation
Exfiltration Channel
Form submission (backend endpoint not detected - likely JavaScript-based)
Risk Assessment
HIGH - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)
ā ļø Indicators of Compromise
- Kit types: Credential Harvester, OTP Stealer, Banking
š¢ Brand Impersonation Analysis
Impersonated Brand
AstraSolana
Fake Service
Crypto Exchange
Fraudulent Claims
āļø Attack Methodology
Primary Method: Credential Harvesting
The site attempts to capture user data by luring them into a sign-up flow on a fraudulent exchange portal.
Secondary Method: Wallet Drainer
Typical for this template: once 'Joined', user may be prompted to connect a wallet for 'custody' of assets.
Target Blockchain
Solana
š Infrastructure Indicators of Compromise
Domain Information
Domain
astrasolana.com
Registered
2025-07-28
Registrar
Unknown
Status
Active
š¤ AI-Extracted Threat Intelligence
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.