EN ES PT
Back to Stats

Visual Capture

Screenshot of elinvetic.com

Detection Info

https://elinvetic.com/
Detected Brand
Unknown/Investment Scam
Country
International
Confidence
90%
HTTP Status
200
Report ID
a0a8e7a2-576…
Analyzed
2026-07-07 23:13

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T154833633421935270537C2D520B95B77E2969E5FFAE70A010EECD7FB2BEACA0745A019
CONTENT ssdeep
768:kwgO2DxZ/DFTk0PhwfjTOIhIEBa4MuVi7:r2FZRTk0PSGIhIEBa4Muo7

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
f887f08ff883f084
VISUAL aHash
ff00e0d8180000c0
VISUAL dHash
2060883070d08890
VISUAL wHash
fff8f4f8bc1800c0
VISUAL colorHash
30002000201
VISUAL cropResistant
2014982323c862e8,80b8d8a9b94d8880,a0688030f0d09890

Code Analysis

Risk Score 56/100
Threat Level ALTO
⚠️ Phishing Confirmed
🎣 OTP Stealer

🔬 Threat Analysis Report

• Threat: Investment Fraud
• Target: Retail investors
• Method: Financial phishing template
• Exfil: Form submission via obfuscated JS
• Indicators: Generic 'InwestPro' branding, stock chart visuals
• Risk: High

🔒 Obfuscation Detected

  • unescape
  • unicode_escape

🎯 Kit Endpoints

  • blog.html

📡 API Calls Detected

  • POST

📊 Risk Score Breakdown

Total Risk Score
85/100

Contributing Factors

Obfuscation
Detection of unescape/unicode_escape patterns.
Domain Analysis
No verifiable business footprint.

🔬 Comprehensive Threat Analysis

Threat Type
Two-Factor Authentication Stealer
Target
Unknown/Investment Scam users (International)
Attack Method
credential harvesting forms + obfuscated JavaScript
Exfiltration Channel
Form submission (backend endpoint not detected - likely JavaScript-based)
Risk Assessment
MEDIUM - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)

⚠️ Indicators of Compromise

  • Kit types: OTP Stealer
  • 24 obfuscation techniques

🏢 Brand Impersonation Analysis

Impersonated Brand
InwestPro
Fake Service
Investment Platform

Fraudulent Claims

⚔️ Attack Methodology

Primary Method: Investment Scam

Landing page designed to harvest user data for follow-up social engineering.

Secondary Method: Credential Harvesting

Forms designed to collect contact info for cold-calling.

🌐 Infrastructure Indicators of Compromise

Domain Information

Domain
elinvetic.com
Registered
2026-04-20
Registrar
Unknown
Status
Active

🤖 AI-Extracted Threat Intelligence

Similar Websites

Pages with identical visual appearance (based on perceptual hash)

😰
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.