EN ES PT
Back to Stats

Visual Capture

No screenshot available

Detection Info

https://teamsupport.jdevcloud.com/a/a/login.php
Detected Brand
SwissPass
Country
Switzerland
Confidence
95%
HTTP Status
200
Report ID
794e8fae-07e…
Analyzed
2025-12-21 10:02

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T1071148604046CD27C993E2E8A7B64A0BA3D5C300CA8B1A0057E8C7EE0EEBD95DC5A4A4
CONTENT ssdeep
12:nwMy7FUUyidhzMFQ9SCcfpqdNHN3KW9rdBbiVQBYE:n/CxdYflBm3WVQBYE

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
ea95a295cdd8b234
VISUAL aHash
ffe3e1f9b0a1e0e0
VISUAL dHash
e54f0b33634d4d4d
VISUAL wHash
ffa5a5f8b0a0e0e0
VISUAL colorHash
06600040001
VISUAL cropResistant
e54f0b33634d4d4d,3060e0e0e0c0c0e0,094911c661666e6c,22266e97968a8b5b,1d2d4e3471210953

Code Analysis

Risk Score 75/100
Threat Level ALTO
šŸŽ£ Credential Harvester
Telegram Exfiltration

šŸ”¬ Threat Analysis Report

• Threat: Credential harvesting phishing attack
• Target: SwissPass users
• Method: Fake login page to steal email addresses
• Exfil: Unknown (likely to a attacker-controlled server)
• Indicators: Unofficial domain (teamsupport.jdevcloud.com), SwissPass logo
• Risk: HIGH - Potential for immediate credential theft

šŸ” Credential Harvesting Forms

šŸ“¤ Form Action Targets

  • password.php

šŸ”‘ Telegram Bot Tokens (1)

  • 8599026062:AAEc...QRD3spcM

Scan History for teamsupport.jdevcloud.com

Found 1 other scan for this domain

😰
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.