SafeMode - Analysis: whtsapp.frappe.cloud

EN ES PT

Back to Stats

Visual Capture

No screenshot available

Detection Info

https://whtsapp.frappe.cloud/inicio

Detected Brand

Unknown

Country

Unknown

Confidence

100%

HTTP Status

200

Report ID

b6fb61e1-591…

Analyzed

2026-01-05 01:00

Final URL (after redirects)

https://cloud.frappe.io/dashboard/login?redirect=/dashboard/%23/sites/new?domain=whtsapp.frappe.cloud

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm	Hash Value
CONTENT TLSH	T115F1D7349120113FD7478BDDB2A2B3266ACDF38FE9628458E2FD039857D5DE09C55868
CONTENT ssdeep	96:1LZxVYNH5XFR/sHxf8nPutZB4YzvajgWHMIbHRAlm1dR21K2nDIkYh/7EZfMh1Jg:jbY7EREmdUHpAlm121YNEZ/m8

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm	Hash Value
VISUAL pHash	b33399998c6666cc
VISUAL aHash	efe7e7e7ffffffff
VISUAL dHash	18080c0c00080000
VISUAL wHash	efe7e7e700000000
VISUAL colorHash	07000000180
VISUAL cropResistant	18080c0c00080000

Code Analysis

Risk Score 95/100

🎣 Credential Harvester 🎣 OTP Stealer 🎣 Card Stealer 🎣 Banking 🎣 Personal Info

🔒 Obfuscation Detected

atob
fromCharCode
unescape
document.write
unicode_escape
base64_strings

📡 API Calls Detected

https://frappecloud.com/support
image/svg+xml
https://docs.frappe.io/cloud/marketplace/marketplace-guidelines
POST

Similar Websites

Pages with identical visual appearance (based on perceptual hash)

Screenshot

https://cdn.gosafemode.com/screenshots/5b7cd5bac2c9.png

Screenshot

https://cdn.gosafemode.com/screenshots/d9d65dfbb409.png

https://tuya365info.frappe.cloud/loggin

https://mailcn.getmyjewelry.top:2443/CookieAuth.dll?GetLogon...

http://gosuslugi.cloudns.nz/domain_success

😰

"I Never Thought It Would Happen to Me"

That's what 2.3 million victims say every year. Don't wait to become a statistic.