Phishing Analysis
Detailed analysis of captured phishing page
Visual Capture
No screenshot available
Detection Info
http://x.pzfdyx.com/wap/
Detected Brand
Unknown
Country
International
Confidence
100%
HTTP Status
200
Report ID
83f86192-beb…
Analyzed
2026-01-03 13:17
Final URL (after redirects)
http://x.pzfdyx.com/start/#/index
Content Hashes (HTML Similarity)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T19C238370D290606B16238FD6F9616F1FB6C3A25DCA72CC1483FC4B8EEBCAD9496055C6 |
|
CONTENT
ssdeep
|
768:nH2VG7lAiX7U3/g3uQGGHqQDh6+tNTxUtBPtvzq0+9r1bL9Vc:nWV0A05rr1f92 |
Visual Hashes (Screenshot Similarity)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
dee13aa5433c417c |
|
VISUAL
aHash
|
00ffffffffffdf00 |
|
VISUAL
dHash
|
890890c242ca352d |
|
VISUAL
wHash
|
00fffc78fafe8000 |
|
VISUAL
colorHash
|
07e08000000 |
|
VISUAL
cropResistant
|
091980c252ca2535,0000009393820080,3535253d3db9edec |
Code Analysis
Risk Score
95/100
Threat Level
BAJO
🎣 Credential Harvester
🎣 OTP Stealer
🎣 Card Stealer
🎣 Banking
🎣 Personal Info
🔥 Firebase Backend
🔬 Threat Analysis Report
• Threat: Generic Shopping Website.
• Target: General public.
• Method: Displays product images and discounts, possibly for e-commerce.
• Exfil: No data exfiltration detected.
• Indicators: Cookie consent banner.
• Risk: LOW - Standard website operation.
🔒 Obfuscation Detected
- atob
- fromCharCode
- unescape
- document.write
- unicode_escape
- base64_strings
📡 API Calls Detected
- /public/userOnlineChatController!unread.action
- /api/localuser!registerNoVerifcode.action
- /api/credit!bill.action
- /api/category!sellerTree.action
- /api/credit!pay.action
- /api/jscode!execute.action
- /api/localuser!get.action
- /api/category!tree.action
- /api/credit!beforereapply.action
- https://www.google.com/ccm/geo
- /api/credit!beforepay.action
- /api/credit!check.action
- api/newOnlinechat!unread.action
- /api/localuser!registerWithVerifcode.action
- /api/credit!histroy.action
- api/syspara!getSyspara.action
- post
- /api/credit!apply.action
- /api/activity/lottery!getCurrentActivity.action
- /api/credit!config.action
- GET
☁️ Cloud Backend
- Firebase: fir-eb636.firebaseapp.com
Scan History for x.pzfdyx.com
Found 6 other scans for this domain
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.