SafeMode - Analysis: n-e-t-f-l-ix.netlify.app

Visual Capture

Detection Info

http://n-e-t-f-l-ix.netlify.app

Detected Brand

Netflix

Country

Unknown

Confidence

100%

HTTP Status

200

Report ID

16acbdc9-26a…

Analyzed

2026-05-24 09:09

Final URL (after redirects)

https://n-e-t-f-l-ix.netlify.app/

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm	Hash Value
CONTENT TLSH	T1825136B4A182993701E3E1E1EA764F9F33D1814DD987171552FEC39C1FEAE19CE16441
CONTENT ssdeep	48:TTuewmjRT/Rmm5j+sdSPSJd9zP9zP9zP9zy:TbDRT/RR5j+sdY

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm	Hash Value
VISUAL pHash	90bd332cc597ce23
VISUAL aHash	ffcffffe52100000
VISUAL dHash	969f68b292a49cc8
VISUAL wHash	7fcfffde32100040
VISUAL colorHash	39600008000
VISUAL cropResistant	969f68b292a49cc8

Code Analysis

Threat Level ALTO

⚠️ Phishing Confirmed

📊 Risk Score Breakdown

Total Risk Score

70/100

🔬 Comprehensive Threat Analysis

Threat Type

Netflix Phishing Landing Page

Target

Netflix users

Attack Method

Phishing webpage

Exfiltration Channel

Form submission (backend endpoint not detected - likely JavaScript-based)

Risk Assessment

LOW - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)

🏢 Brand Impersonation Analysis

Impersonated Brand

Netflix

Official Website

https://www.netflix.com

Fake Service

Credential harvesting service

⚔️ Attack Methodology

Primary Method: Brand Impersonation Redirect

Impersonates Netflix to build victim trust through search engine manipulation or malicious advertisements. Often redirects to credential theft pages or serves malware disguised as legitimate software.

Secondary Method: Standard Phishing Techniques

Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.