EN ES PT
Back to Stats

Visual Capture

Screenshot of tusharsharmats20074-art.github.io

Detection Info

https://tusharsharmats20074-art.github.io/netflix-clone-
Detected Brand
Netflix
Country
International
Confidence
95%
HTTP Status
200
Report ID
43bbe457-876…
Analyzed
2026-02-10 23:45
Final URL (after redirects)
https://tusharsharmats20074-art.github.io/netflix-clone-/

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T1C00213F612049E3F616383E0A3747B7B3396834ACA4B12048AF993645F96D5DED3B1C5
CONTENT ssdeep
192:WbCBDIJ/wjRI5l/UcSVy3JHKv908bbkfZAOvEn0ODI0:WmBcJIjRI5l2y3J/AOvgc0

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
c13ca0e33ec339dc
VISUAL aHash
471b180c807c7e20
VISUAL dHash
9eb2325838c8c8aa
VISUAL wHash
4f5f181c887c7e70
VISUAL colorHash
39400010000
VISUAL cropResistant
cb935b2d3dfbd166,9eb2325838c8c8aa

Code Analysis

Threat Level ALTO
⚠️ Phishing Confirmed

🔬 Threat Analysis Report

• Threat: Phishing
• Target: Netflix users
• Method: Impersonation via a fake login page
• Exfil: Email address
• Indicators: Free hosting, brand logo
• Risk: HIGH

📊 Risk Score Breakdown

Total Risk Score
90/100

Contributing Factors

Free Hosting
The domain is hosted on a free platform, a common indicator of phishing.
Brand Impersonation
The site mimics Netflix with its logo and branding.

🔬 Comprehensive Threat Analysis

Threat Type
Netflix Phishing Landing Page
Target
Netflix users (International)
Attack Method
Brand impersonation
Exfiltration Channel
Form submission (backend endpoint not detected - likely JavaScript-based)
Risk Assessment
LOW - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)

🏢 Brand Impersonation Analysis

Impersonated Brand
Netflix
Official Website
https://www.netflix.com/
Fake Service
Netflix Account

⚔️ Attack Methodology

Primary Method: Credential Harvesting

The attacker aims to steal user credentials (email) by creating a fake login page that mimics the legitimate website.

Secondary Method: Social Engineering

The site uses social engineering by requesting the user's email address to "create or restart your membership".

🌐 Infrastructure Indicators of Compromise

Domain Information

Domain
tusharsharmats20074-art.github.io
Registered
None
Registrar
None
Status
None

🤖 AI-Extracted Threat Intelligence

Scan History for tusharsharmats20074-art.github.io

Found 1 other scan for this domain

😰
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.