Phishing Analysis
Detailed analysis of captured phishing page
Visual Capture
Detection Info
https://maneesh004-code.github.io/netflix-clone/
Detected Brand
Netflix
Country
International
Confidence
100%
HTTP Status
200
Report ID
81dafbf3-637…
Analyzed
2026-02-03 00:00
Content Hashes (HTML Similarity)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1C9A110A61241DE2E5177C3E2B332377A23A68289DA46130485FED3681BD6D5DED3B8C4 |
|
CONTENT
ssdeep
|
96:npY81ReAt7kJLoWKjRzkHo2f9me281JfbQorn5:pYwReykloWKj5kHo2f9me28bfbQor5 |
Visual Hashes (Screenshot Similarity)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
964db62469966dd2 |
|
VISUAL
aHash
|
003c7e0800066e0e |
|
VISUAL
dHash
|
06c4d03801c4cccc |
|
VISUAL
wHash
|
02007e3cff0e7e4e |
|
VISUAL
colorHash
|
38600018000 |
|
VISUAL
cropResistant
|
e4f43230e4a1a1e0,06c4d03801c4cccc |
Code Analysis
Risk Score
65/100
Threat Level
ALTO
⚠️ Phishing Confirmed
🎣 Credential Harvester
🎣 Personal Info
🔬 Threat Analysis Report
• Threat: Phishing
• Target: Netflix users
• Method: Credential harvesting
• Exfil: Unknown, likely to the attacker
• Indicators: Free hosting, brand impersonation, email input.
• Risk: High
📊 Risk Score Breakdown
Total Risk Score
90/100
Contributing Factors
Free Hosting
The domain utilizes a free hosting service, which is commonly abused by phishers.
Brand Impersonation
The page mimics the Netflix website.
Credential Harvesting
The site asks for user's email address in a form.
🔬 Comprehensive Threat Analysis
Threat Type
Credential Harvesting Kit
Target
Netflix users (International)
Attack Method
Brand impersonation
Exfiltration Channel
Form submission (backend endpoint not detected - likely JavaScript-based)
Risk Assessment
HIGH - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)
⚠️ Indicators of Compromise
- Kit types: Credential Harvester, Personal Info
🏢 Brand Impersonation Analysis
Impersonated Brand
Netflix
Official Website
https://www.netflix.com
Fake Service
Netflix account signup
⚔️ Attack Methodology
Primary Method: Credential Harvesting
The attacker aims to steal user credentials (email and password) by creating a fake login form that looks like Netflix. Victims enter their details, which are then sent to the attacker.
🌐 Infrastructure Indicators of Compromise
Domain Information
Domain
maneesh004-code.github.io
Registered
None
Registrar
None
Status
active
🔬 JavaScript Deep Analysis
Operator Language
English (1%)
Total Code Size
2.6 KB
🔐 Obfuscation Detected
- : None
🤖 AI-Extracted Threat Intelligence
Similar Websites
Pages with identical visual appearance (based on perceptual hash)
Netflix
https://sibaprasadsahu410-cpu.github.io/NETFLIX-CLONE/
Jun 21, 2026
Netflix
https://dark-coder-2008.github.io/Netflix-Clone/
May 17, 2026
Netflix
https://nneelabh02.github.io/netflix-clone/
May 11, 2026
Netflix
http://utsabdas045-beep.github.io/CINEPLEX
May 06, 2026
Netflix
http://kaditya2006.github.io/Netflix
May 03, 2026
Scan History for maneesh004-code.github.io
Found 5 other scans for this domain
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.