Phishing Analysis
Detailed analysis of captured phishing page
Visual Capture
No screenshot available
Detection Info
https://telegram.me/s/iuriindica?q=3900
Detected Brand
IURI INDICA
Country
Brazil
Confidence
100%
HTTP Status
200
Report ID
4893ef1a-199…
Analyzed
2026-01-04 00:44
Content Hashes (HTML Similarity)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1E1C3A7B24313E82F2243C6CEB5573B692E91C2DCE7564D46B7BE3270D754EA4742228B |
|
CONTENT
ssdeep
|
768:WG5UdvNzlH5qdrF1+rIpKO1TfGg1n6kq15cx1n7ZU13E5K1ce11tQyX1HZC1o8Ph:MF8K2G0Dn9Oeyf05HfMGRb/cmeCEC |
Visual Hashes (Screenshot Similarity)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
8e96cc64e7cc31e8 |
|
VISUAL
aHash
|
3f1f0f0c00c0f8f8 |
|
VISUAL
dHash
|
65697969899a6060 |
|
VISUAL
wHash
|
3f3f1f0d00c0f8f8 |
|
VISUAL
colorHash
|
060d0000000 |
|
VISUAL
cropResistant
|
65697969899a6060,a585a7a5c1eca8c3 |
Code Analysis
Risk Score
89/100
Threat Level
BAJO
🎣 Credential Harvester
🎣 OTP Stealer
🔬 Threat Analysis Report
• Threat: Promotional advertisement
• Target: Tech enthusiasts, potential buyers of AMD Ryzen 9 3900 processor
• Method: Advertisement of a product through a Telegram channel
• Exfil: No data exfiltration
• Indicators: Telegram channel with associated website
• Risk: LOW - Legitimate advertisement
🔐 Credential Harvesting Forms
🔒 Obfuscation Detected
- fromCharCode
- document.write
- base64_strings
🎯 Kit Endpoints
- //telegram.org/blog
📡 API Calls Detected
- GET
- /auth?bot_id=
- get
- POST
📤 Form Action Targets
- /s/iuriindica
Similar Websites
Pages with identical visual appearance (based on perceptual hash)
Scan History for telegram.me
Found 9 other scans for this domain
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.