EN ES PT
Back to Stats

Visual Capture

No screenshot available

Detection Info

https://www.binashealthtips.com/
Detected Brand
imToken
Country
International
Confidence
100%
HTTP Status
200
Report ID
8c164938-ba4…
Analyzed
2026-01-04 13:06
Final URL (after redirects)
https://www.binashealthtips.com/index.html

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T1A73210309541ED2B4093C6E89770878FB3D4C385CA271B5623F5C7AEAECBD96DD02984
CONTENT ssdeep
192:z02CJZs9eHLYwwcXetqzSCegomqH1tGOQI9:gLJZGeHLuKum0

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
ece943929238e1ed
VISUAL aHash
fffffbffff000000
VISUAL dHash
2b2312372452f0d4
VISUAL wHash
fdffc3d7df000000
VISUAL colorHash
070020001c0
VISUAL cropResistant
032922131f372603,0c3232002aa4940a,8292489696969680,00143070c4d4d4d4

Code Analysis

Risk Score 90/100
Threat Level BAJO
🎣 Credential Harvester 🎣 Personal Info

🔬 Threat Analysis Report

• Threat: False association of a legitimate service with a suspicious domain
• Target: Crypto wallet (imToken) users
• Method: Showing imToken's UI without being connected to the real site
• Exfil: No exfiltration detected, screenshot only shows the interface
• Indicators: Suspicious domain (binashealthtips.com), legitimate interface
• Risk: LOW - Misleading association, low risk as it does not steal data directly

🔐 Credential Harvesting Forms

🔒 Obfuscation Detected

  • eval
  • fromCharCode
  • unescape
  • document.write
  • hex_escape

📡 API Calls Detected

  • GET
  • print
  • order.html?OrderPay=
  • text/html
  • POST

📤 Form Action Targets

  • /plus/diy.php
😰
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.