Phishing Analysis
Detailed analysis of captured phishing page
Visual Capture
Detection Info
http://pemudian-dana.pages.dev/video.webm
Detected Brand
Pay
Country
International
Confidence
99%
HTTP Status
200
Report ID
66e32db3-644…
Analyzed
2025-12-19 11:30
Final URL (after redirects)
https://pemudian-dana.pages.dev/video.webm
Content Hashes (HTML Similarity)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1AF2408C9F39D30170227316859AF228EB23D441BD809485DB9ADE4D87FE595C827BFB8 |
|
CONTENT
ssdeep
|
3072:fm8cUMNlPBqJTuOGQOotEhKOSkn6x2xe9NK6nC6zIC:ftcnNlPBqJTuOeotEhKOSk6oxeeQPUC |
Visual Hashes (Screenshot Similarity)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
a35c2767d8a1d82e |
|
VISUAL
aHash
|
000000ffffffffff |
|
VISUAL
dHash
|
0000088069cdcece |
|
VISUAL
wHash
|
000000ff99e7e7ff |
|
VISUAL
colorHash
|
160000001c0 |
|
VISUAL
cropResistant
|
29b2714dcececeea,0000000000000000,0010303010080000 |
Code Analysis
Risk Score
70/100
Threat Level
ALTO
🔬 Threat Analysis Report
• Threat: Phishing targeting users of the 'Pay' service.
• Target: Users of the 'Pay' platform.
• Method: The page displays a fake form prompting users to select an option related to account recovery or blocking, potentially leading to credential theft or account takeover.
• Exfil: Unknown, potentially directed to a malicious server for data harvesting.
• Indicators: The use of a free hosting service (pages.dev) combined with branding from 'Pay' constitutes a high-risk indicator.
• Risk: HIGH - Due to the high likelihood of credential theft or unauthorized account access.
Similar Websites
Pages with identical visual appearance (based on perceptual hash)
Scan History for pemudian-dana.pages.dev
Found 2 other scans for this domain
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.