EN ES PT
Back to Stats

Visual Capture

Screenshot of ahrgenat.wpenginepowered.com

Detection Info

https://ahrgenat.wpenginepowered.com/wp-admin/sasn/login.html
Detected Brand
CSS
Country
International
Confidence
100%
HTTP Status
200
Report ID
26e8db47-cee…
Analyzed
2025-12-29 13:07

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T19734299E72D4B0A90B977174E03F720EF2BB6D41288CC110EA65D5D63C6984ED233F6A
CONTENT ssdeep
3072:qnREtqufV0bGrW3sYvO2OvBenacsBz/Xq7M/jr5C9yp:qREt50biW3sYO2Or

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
9b13391938666e6d
VISUAL aHash
080c34243cffffff
VISUAL dHash
3959654951606141
VISUAL wHash
002c34243c3cffff

Code Analysis

Risk Score 70/100
Threat Level CRITICAL
⚠️ Phishing Confirmed
🎣 Credential Harvester 🎣 OTP Stealer 🎣 Card Stealer 🎣 Banking 🎣 Personal Info

🔬 Threat Analysis Report

• Threat: Credential harvesting phishing kit targeting CSS insurance customers
• Target: Users of CSS insurance
• Method: Fake login form steals email and password
• Exfil: Likely a custom API endpoint based on the domain
• Indicators: Domain mismatch, free hosting, login form
• Risk: HIGH - Immediate credential theft

🔐 Credential Harvesting Forms

📤 Form Action Targets

  • ./lx/send_login.php
😰
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.