SafeMode - Analysis: jawad-devpk.github.io

Visual Capture

Detection Info

https://jawad-devpk.github.io/whatsapp-clone

Detected Brand

Country

Unknown

Confidence

95%

HTTP Status

200

Report ID

25e50cbf-352…

Analyzed

2026-06-07 22:18

Final URL (after redirects)

https://jawad-devpk.github.io/whatsapp-clone/

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm	Hash Value
CONTENT TLSH	T1E5410E3190119A37029792C4AB36C32BBBC18760DB570F291AF5C30DEFC7D6ACD56286
CONTENT ssdeep	48:TWTNmCxd5UdpAC9gr8zbzwBH0KgomxFI3flnS0yrio6:TsxdKAC93zOHJgrI3dS0yriJ

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm	Hash Value
VISUAL pHash	cb4bb6368d496985
VISUAL aHash	4cfcb9b9ffc7ffff
VISUAL dHash	995d6363420d2000
VISUAL wHash	0c4439393ac5fcfc
VISUAL colorHash	07007000400
VISUAL cropResistant	995d6363420d2000

Code Analysis

Threat Level ALTO

⚠️ Phishing Confirmed

📊 Risk Score Breakdown

Total Risk Score

40/100

🔬 Comprehensive Threat Analysis

Threat Type

WhatsApp Phishing Landing Page

Target

WhatsApp users

Attack Method

Phishing webpage

Exfiltration Channel

Form submission (backend endpoint not detected - likely JavaScript-based)

Risk Assessment

LOW - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)

🏢 Brand Impersonation Analysis

Impersonated Brand

Official Website

https://www.whatsapp.com

Fake Service

Credential harvesting service

⚔️ Attack Methodology

Primary Method: Search Engine Manipulation

Fake WhatsApp site positioned to capture victims through SEO tactics, typosquatting, or paid advertising. Serves as entry point for multi-stage attacks including credential theft and malware distribution.

Secondary Method: Standard Phishing Techniques

Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.

🌐 Infrastructure Indicators of Compromise

Domain Information

Domain

jawad-devpk.github.io

Registered

Unknown

Registrar

Unknown

Status

Hosting platform (subdomain)

Hosting Information

Provider

Unknown

ASN

Phishing Analysis

Visual Capture

Detection Info

Content Hashes (HTML Similarity)

Visual Hashes (Screenshot Similarity)

Code Analysis

📊 Risk Score Breakdown

🔬 Comprehensive Threat Analysis

🏢 Brand Impersonation Analysis

⚔️ Attack Methodology

Primary Method: Search Engine Manipulation

Secondary Method: Standard Phishing Techniques

🌐 Infrastructure Indicators of Compromise

Domain Information

Hosting Information

🤖 AI-Extracted Threat Intelligence