Phishing Analysis
Detailed analysis of captured phishing page
Visual Capture
No screenshot available
Detection Info
http://thevalleyfarmer.com/balance/opg
Detected Brand
Unknown
Country
Unknown
Confidence
100%
HTTP Status
200
Report ID
3c3dccc4-8e7…
Analyzed
2026-01-06 05:12
Final URL (after redirects)
http://thevalleyfarmer.com/
Content Hashes (HTML Similarity)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T14E31B663A41155278693579CA7E6F20DD1C1958AC79A1548A5E9D3B78FC0FC1CC771C0 |
|
CONTENT
ssdeep
|
24:nl8UY+e0huwtIo0bhYvciL8mHlt5X+3Vxg/2yqoXcpjI1HVoa:nZYuhltIZbCkqlt5uFy/A4cpo1H |
Visual Hashes (Screenshot Similarity)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
b366999b66649923 |
|
VISUAL
aHash
|
e7e7e7e7e7e7e7ff |
|
VISUAL
dHash
|
0c0c4d4d0c0c0c00 |
|
VISUAL
wHash
|
e7e7e7e72000003c |
|
VISUAL
colorHash
|
07000180000 |
|
VISUAL
cropResistant
|
0c0c4d4d0c0c0c00 |
Code Analysis
Risk Score
89/100
🎣 Credential Harvester
🎣 OTP Stealer
🔐 Credential Harvesting Forms
🔒 Obfuscation Detected
- atob
- fromCharCode
- base64_strings
📡 API Calls Detected
- https://www.google.com/ccm/geo
- POST
📤 Form Action Targets
- https://porkbun.com/checkout/search
Similar Websites
Pages with identical visual appearance (based on perceptual hash)
Unknown
https://cdn.gosafemode.com/screenshots/3e75018924c2.png
Jun 30, 2026
Unknown
https://cdn.gosafemode.com/screenshots/06fb7857cca0.png
May 11, 2026
Unknown
https://cdn.gosafemode.com/screenshots/f8ff6e212613.png
Mar 14, 2026
Unknown
https://cdn.gosafemode.com/screenshots/8fcfb5d35576.png
Mar 14, 2026
No screenshot
Unknown
http://supportline.me
Jan 04, 2026
Scan History for thevalleyfarmer.com
Found 1 other scan for this domain
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.