Phishing Analysis
Detailed analysis of captured phishing page
Visual Capture
Detection Info
https://support-clientt.com/
Detected Brand
Assurance Maladie (Ameli)
Country
International
Confidence
95%
HTTP Status
200
Report ID
70a5a0cc-855…
Analyzed
2026-02-28 01:00
Final URL (after redirects)
https://support-clientt.com/pages/captcha.php
Content Hashes (HTML Similarity)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1244134B472543EF74E93A2D57F83A7C3B1D2808DF1120A1C22F8D75A1BDEDA4D515445 |
|
CONTENT
ssdeep
|
48:uJYgcCGOnZvW3u3bXY0Y3KnTgTqRguZNSTd3OmIW:GYEGOnZvW3u3bxY3KEWRguipHb |
Visual Hashes (Screenshot Similarity)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
b7831d8137833f83 |
|
VISUAL
aHash
|
ffffffffffffff00 |
|
VISUAL
dHash
|
c8000c0c0c080028 |
|
VISUAL
wHash
|
00bf07070018c800 |
|
VISUAL
colorHash
|
07000000038 |
|
VISUAL
cropResistant
|
c000080c0c0c0008,00c8203e1e210880 |
Code Analysis
Threat Level
ALTO
⚠️ Phishing Confirmed
🔬 Threat Analysis Report
• Threat: Phishing
• Target: Assurance Maladie (Ameli) users
• Method: Impersonation and credential harvesting
• Exfil: Unknown, likely harvesting login credentials.
• Indicators: Unrelated domain, recent domain age, security verification form.
• Risk: High
📡 API Calls Detected
- ../utils/set_session_captcha.php
📊 Risk Score Breakdown
Total Risk Score
90/100
Contributing Factors
Recent Domain
The domain is only 4 days old, which is a strong indicator of phishing.
Domain Mismatch
The domain (support-clientt.com) is completely unrelated to the target brand (Ameli)
🔬 Comprehensive Threat Analysis
Threat Type
Assurance Maladie (Ameli) Phishing Landing Page
Target
Assurance Maladie (Ameli) users (International)
Attack Method
Brand impersonation
Exfiltration Channel
Form submission (backend endpoint not detected - likely JavaScript-based)
Risk Assessment
LOW - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)
🏢 Brand Impersonation Analysis
Impersonated Brand
Assurance Maladie (Ameli)
Official Website
ameli.fr
Fake Service
Security Verification
⚔️ Attack Methodology
Primary Method: Credential Harvesting
The attacker is attempting to steal user credentials by mimicking a security verification process. Users are tricked into providing information that can be used to access their accounts on Ameli's official website.
🌐 Infrastructure Indicators of Compromise
Domain Information
Domain
support-clientt.com
Registered
2024-02-19
Registrar
Unknown
Status
ACTIVE
🤖 AI-Extracted Threat Intelligence
Similar Websites
Pages with identical visual appearance (based on perceptual hash)
L'Assurance Maladie (Ameli)
https://regularisation-cpam.info/
Jun 13, 2026
Assurance Maladie (Ameli)
https://support-clientt.com/pages/captcha.php
Feb 28, 2026
Assurance Maladie (Ameli)
https://support-clientt.com/
Feb 28, 2026
l'Assurance Maladie (Ameli)
https://support-clientt.com/pages/captcha.php
Feb 28, 2026
Scan History for support-clientt.com
Found 3 other scans for this domain
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.