Phishing Analysis
Detailed analysis of captured phishing page
Visual Capture
Detection Info
https://bonaturo.com/arruba/aruba/
Detected Brand
Aruba.it
Country
Italy
Confidence
95%
HTTP Status
200
Report ID
7cf765e8-fb3…
Analyzed
2026-01-22 11:27
Content Hashes (HTML Similarity)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T116C1DFB050119D3B05FB98D867B52F1A91D6D246CE33124BB7ED87E90BCFD0ACE52650 |
|
CONTENT
ssdeep
|
96:NxgTtu9tuiw895GZV6UP8UY8o8YiJY/lPwPP08lTGep:NxgTc9tKzl4v8lVp |
Visual Hashes (Screenshot Similarity)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
b83890cbc7c74769 |
|
VISUAL
aHash
|
ffc3c3e7fbfbffff |
|
VISUAL
dHash
|
2eb69e0e12120002 |
|
VISUAL
wHash
|
00000020e3ebffff |
|
VISUAL
colorHash
|
070000001c0 |
|
VISUAL
cropResistant
|
2eb69e0e12120002,78604038a44c52d2 |
Code Analysis
Risk Score
63/100
Threat Level
ALTO
⚠️ Phishing Confirmed
🎣 Credential Harvester
🔬 Threat Analysis Report
• Threat: Credit card credential harvesting
• Target: Aruba.it customers in Italy
• Method: Fake payment form stealing credit card number, expiry date, and CVV
• Exfil: Data sent to ./ (relative path)
• Indicators: Domain unrelated to the brand, obfuscated JavaScript, form for credit card details
• Risk: CRITICAL - Immediate financial theft
🔐 Credential Harvesting Forms
🔒 Obfuscation Detected
- fromCharCode
📤 Form Action Targets
- ./
Similar Websites
Pages with identical visual appearance (based on perceptual hash)
Banca Sella
https://sannicolasprestaciones.com.ar/public/jscje/jcsmta/
May 25, 2026
Banca Sella
https://s1167342.ha021.t.mydomain.zone/jssj/jncc/
May 20, 2026
Aruba
http://idmx-26gdh.com/at-26/
May 20, 2026
Banca Sella
https://s1167342.ha021.t.mydomain.zone/js/jnc/
May 18, 2026
Banca Sella
https://s1167342.ha021.t.mydomain.zone/aruba-it/
May 18, 2026
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.