EN ES PT

Phishing Analysis

Detailed analysis of captured phishing page

Back to Stats

Visual Capture

Screenshot of espace-fr.client.caffr-demande.notifie-messagerie.com

Detection Info

https://espace-fr.client.caffr-demande.notifie-messagerie.com/
Detected Brand
Plesk
Country
International
Confidence
100%
HTTP Status
200
Report ID
1663d7bf-e5d…
Analyzed
2026-01-01 06:18

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T11922B772D109E67F0213D2E6FB74B720B34B888CF8961256D6ED837C65ABFA1D443618
CONTENT ssdeep
96:nTJd1Alnl3cTIud6niUrR8tbs56epN6Ol40/mVaDlqaj0LZMzdq6REydaTavg+jG:PIudAiUePyC8lv4RVgdYITq

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
898d7552caca7c74
VISUAL aHash
181b1b7f7f002400
VISUAL dHash
f36a32d1d9ccccd2
VISUAL wHash
1c1b1b7f7f747000
VISUAL colorHash
300000081c0
VISUAL cropResistant
ecceda5419d944e8,1029a8d496d649a4,f36a32d1d9ccccd2

Code Analysis

Risk Score 100/100
Threat Level ALTO
⚠️ Phishing Confirmed
🎣 Credential Harvester 🎣 Banking

🔬 Threat Analysis Report

• Threat: Plesk brand impersonation
• Target: Plesk users
• Method: Using the Plesk logo and branding on a non-Plesk domain
• Exfil: Unknown
• Indicators: Domain mismatch, Plesk branding on a suspicious URL
• Risk: HIGH - Could lead to credential theft or malware installation

🔒 Obfuscation Detected

  • atob
  • fromCharCode
  • document.write
  • base64_strings

🎯 Kit Endpoints

  • https://www.plesk.com/blog/business-industry/whats-control-panel-all-you-need-to-know/?utm_campaign=plesk_site_default_page_js
  • https://support.plesk.com/hc/en-us/articles/213413369-How-to-log-in-to-Plesk-?utm_campaign=plesk_site_default_page_js
  • {{plesk_login}}?utm_campaign={{utm_campaign}}
  • https://www.plesk.com/blog/?utm_campaign={{utm_campaign}}
  • https://www.plesk.com/blog/business-industry/whats-control-panel-all-you-need-to-know/?utm_campaign={{utm_campaign}}
  • https://www.plesk.com/blog/?utm_campaign=plesk_site_default_page_js
  • https://support.plesk.com/hc/en-us/articles/213413369-How-to-log-in-to-Plesk-?utm_campaign={{utm_campaign}}

Similar Websites

Pages with identical visual appearance (based on perceptual hash)

Screenshot
Unknown
https://cdn.gosafemode.com/screenshots/962c4893f287.png
May 21, 2026
 Screenshot
Plesk
https://espace-fr.client.caffr-demande.notifie-messagerie.co...
Jan 02, 2026

Scan History for espace-fr.client.caffr-demande.notifie-messagerie.com

Found 2 other scans for this domain

😰
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.