EN ES PT

Phishing Analysis

Detailed analysis of captured phishing page

Back to Stats

Visual Capture

Screenshot of cocorost-556.jp

Detection Info

https://cocorost-556.jp/in/GlobalSources/
Detected Brand
DHL
Country
International
Confidence
99%
HTTP Status
200
Report ID
7c84fca0-7f3…
Analyzed
2025-12-26 01:03

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T1F551CAA0B3C46A5E98D0458BD1003FD5A3D0D1AA937138045E5FAF5FE8CD0F599672EE
CONTENT ssdeep
48:fHfaRBRRZGMB+Rv441RrVCVv7kKG6bvtXV26/+SlRdaxrbEuCDj1a:SjzBmwIukKGOvxVldHI1Aj1a

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
da4ba5a5276a4a5a
VISUAL aHash
ffff000000ffffff
VISUAL dHash
c4d939950422340c
VISUAL wHash
ffff00000000ffff

Code Analysis

Risk Score 50/100
Threat Level CRITICAL
⚠️ Phishing Confirmed
🎣 Credential Harvester

🔬 Threat Analysis Report

• Threat: Credential harvesting phishing attack
• Target: DHL customers, potentially in China
• Method: Fake DHL login page to steal passwords
• Exfil: Unknown data exfiltration point, likely a remote server.
• Indicators: Domain name unrelated to DHL, password field, DHL branding.
• Risk: HIGH - Potential credential compromise for DHL accounts

Similar Websites

Pages with identical visual appearance (based on perceptual hash)

Screenshot
DHL
http://www.maison-orbey.de/g/o/
Mar 31, 2026
 Screenshot
DHL
https://maison-orbey.de/g/o/
Mar 20, 2026
 Screenshot
DHL
https://maison-orbey.de/wp-content/plugins/xleet/b/g/index2....
Mar 17, 2026
 Screenshot
DHL
https://www.maison-orbey.de/wp-content/plugins/xleet/b/g/ind...
Mar 17, 2026
 Screenshot
DHL
http://maison-orbey.de/g/o
Mar 17, 2026

Scan History for cocorost-556.jp

Found 10 other scans for this domain

😰
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.