EN ES PT

Phishing Analysis

Detailed analysis of captured phishing page

Back to Stats

Visual Capture

Screenshot of bfg.fjg.mybluehost.me

Detection Info

https://bfg.fjg.mybluehost.me/DH/DH/pages/
Detected Brand
DHL
Country
International
Confidence
99%
HTTP Status
200
Report ID
7d96eb27-83a…
Analyzed
2025-12-26 12:04

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T1A7D1ADA641D5D827209343DFB1EBAF17B1F28948CA45AA12B6FC47A85BEBC54BC11B01
CONTENT ssdeep
96:wb2UN1DtG+OD1C7DRDWKjNXsO3FLZKhyLD9u9olfgISdj48/v8wDY:wb2U7JgJC7D1WAg29eh7Y

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
9a1b29bd96878786
VISUAL aHash
01003c3cffffffff
VISUAL dHash
9f13cd69603f93c8
VISUAL wHash
00003c04ffc3ff7f

Code Analysis

⚠️ Phishing Confirmed

🔬 Threat Analysis Report

• Threat: Phishing attack attempting to steal money.
• Target: DHL customers who are expecting a parcel delivery.
• Method: Presents a fake DHL tracking page and prompts the user to pay a small delivery fee.
• Exfil: Payment data is exfiltrated to an unknown destination.
• Indicators: The domain name is suspicious and does not match DHL's official website. Urgency is created by prompting the user to pay as soon as possible.
• Risk: HIGH - The site attempts to steal money and could lead to further credential compromise.

Similar Websites

Pages with identical visual appearance (based on perceptual hash)

Screenshot
DHL
https://bfg.fjg.mybluehost.me/DH/DH/pages/
Feb 23, 2026
 Screenshot
DHL
https://bfg.fjg.mybluehost.me/DH/DH/pages/
Jan 15, 2026
 Screenshot
DHL
https://nisman.kinsta.cloud/pf/pages/index.php
Jan 11, 2026
 Screenshot
DHL
https://zpr.io/ZnAEhmzwtDNk
Dec 27, 2025

Scan History for bfg.fjg.mybluehost.me

Found 10 other scans for this domain

😰
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.