Phishing Analysis

🔐 Credential Harvesting Forms

🔒 Obfuscation Detected

• atob
• eval
• fromCharCode
• unescape
• document.write
• hex_escape
• unicode_escape
• base64_strings

🎯 Kit Endpoints

• https://www.aboutamazon.com/?utm_source=gateway&utm_medium=footer&token=about
• closeErrorDialog
• https://sustainability.aboutamazon.com/?utm_source=gateway&utm_medium=footer&ref_=susty_footer
• /kindle-dbs/cu/signup?ref=books_dsk_sn_comixology-un-e5e7f
• https://logistics.amazon.com/marketing?utm_source=amzn&utm_medium=footer&utm_campaign=home
• navigate:btf-sub-nav-desktop-back-to-top-title
• navigate:btf-sub-nav-desktop-about-this-item
• navigate:btf-sub-nav-desktop-back-to-top
• navigate:btf-sub-nav-desktop-back-to-top-image
• navigate:btf-sub-nav-desktop-from-the-brand
• https://email.aboutamazon.com/l/637851/2020-10-29/pd87g?utm_source=gateway&utm_medium=amazonfooters&utm_campaign=newslettersubscribers&utm_content=amazonnewssignup
• navigate:btf-sub-nav-desktop-from-the-author
• navigate:btf-sub-nav-desktop-similar
• navigate:btf-sub-nav-desktop-customer-reviews

📡 API Calls Detected

• /dp/
• GET
• POST

📤 Form Action Targets

• get
• /cart/add-to-cart/ref=emc_s_m_5_i_atc_c
• /s/ref=nb_sb_noss
• javascript:void(0);
• /cart/add-to-cart/ref=pd_bxgy_crt?_encoding=UTF8&pd_rd_w=9Ju2D&content-id=amzn1.sym.dcf559c6-d374-405e-a13e-133e852d81e1&pf_rd_p=dcf559c6-d374-405e-a13e-133e852d81e1&pf_rd_r=WTQKRN7F5DNF46PF258Q&pd_rd_wg=kZlhA&pd_rd_r=c141e783-98f9-4bb1-88e2-db42fa61e8a6
• /gp/product/handle-buy-box/ref=dp_start-bbf_1_glance