Phishing Analysis
Detailed analysis of captured phishing page
Visual Capture
Detection Info
http://perpetual-advisor.com
Detected Brand
Perpetual Capital Advisors
Country
International
Confidence
100%
HTTP Status
200
Report ID
b9d1a634-6fe…
Analyzed
2026-04-16 04:56
Final URL (after redirects)
https://perpetual-advisor.com/
Content Hashes (HTML Similarity)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T19BF22660741522A30373C5C5F5623F46B6E3F74FD1DA49916A7C52880FD7CB0BA2A2B6 |
|
CONTENT
ssdeep
|
768:4fO15SgFYN2pf5sNFGsPRI5dQ4sd8TASLdibdR4MdL4+dzgEDDYZ5nBS8s8wYhmh:QO15SgFYN2pf5sNFGsPRI5dQ4sdMASL4 |
Visual Hashes (Screenshot Similarity)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
8e0fc3e170bab878 |
|
VISUAL
aHash
|
ff00000000ffffff |
|
VISUAL
dHash
|
c1e0f83d0e2b2b29 |
|
VISUAL
wHash
|
ff00000000ffffff |
|
VISUAL
colorHash
|
06007000000 |
|
VISUAL
cropResistant
|
01c1e0e070f8fe7d,29002b2b2b291400,e0e070f8ff3d0e1f |
Code Analysis
Risk Score
88/100
Threat Level
ALTO
⚠️ Phishing Confirmed
🎣 Credential Harvester
🎣 OTP Stealer
🎣 Banking
🎣 Personal Info
🔬 Threat Analysis Report
• Threat: Financial Investment Scam
• Target: Retail investors
• Method: Impersonation of an investment advisory firm to harvest credentials or deposit funds
• Exfil: Obfuscated JS form submission
• Indicators: Extremely new domain, generic template
• Risk: High
🔒 Obfuscation Detected
- unescape
- unicode_escape
🎯 Kit Endpoints
- data:image/png;base64,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
- /auth/login
- https://www.tradingview-widget.com/embed-widget/market-quotes/?locale=en#%7B%22width%22%3A%22100%25%22%2C%22height%22%3A%22100%25%22%2C%22symbolsGroups%22%3A%5B%7B%22name%22%3A%22Indices%22%2C%22originalName%22%3A%22Indices%22%2C%22symbols%22%3A%5B%7B%22name%22%3A%22FOREXCOM%3ASPXUSD%22%2C%22displayName%22%3A%22S%26P%20500%22%7D%2C%7B%22name%22%3A%22FOREXCOM%3ANSXUSD%22%2C%22displayName%22%3A%22US%20100%22%7D%2C%7B%22name%22%3A%22FOREXCOM%3ADJI%22%2C%22displayName%22%3A%22Dow%2030%22%7D%2C%7B%22name%22%3A%22INDEX%3ANKY%22%2C%22displayName%22%3A%22Nikkei%20225%22%7D%2C%7B%22name%22%3A%22INDEX%3ADEU40%22%2C%22displayName%22%3A%22DAX%20Index%22%7D%2C%7B%22name%22%3A%22FOREXCOM%3AUKXGBP%22%2C%22displayName%22%3A%22UK%20100%22%7D%5D%7D%2C%7B%22name%22%3A%22Futures%22%2C%22originalName%22%3A%22Futures%22%2C%22symbols%22%3A%5B%7B%22name%22%3A%22BMFBOVESPA%3AISP1!%22%2C%22displayName%22%3A%22S%26P%20500%22%7D%2C%7B%22name%22%3A%22BMFBOVESPA%3AEUR1!%22%2C%22displayName%22%3A%22Euro%22%7D%2C%7B%22name%22%3A%22CAPITALCOM%3ANATURALGAS%20%22%2C%22displayName%22%3A%22Natural%20Gas%22%7D%2C%7B%22name%22%3A%22BMFBOVESPA%3ACCM1!%22%2C%22displayName%22%3A%22Corn%22%7D%5D%7D%2C%7B%22name%22%3A%22Forex%22%2C%22originalName%22%3A%22Forex%22%2C%22symbols%22%3A%5B%7B%22name%22%3A%22FX%3AEURUSD%22%2C%22displayName%22%3A%22EUR%2FUSD%22%7D%2C%7B%22name%22%3A%22FX%3AGBPUSD%22%2C%22displayName%22%3A%22GBP%2FUSD%22%7D%2C%7B%22name%22%3A%22FX%3AUSDJPY%22%2C%22displayName%22%3A%22USD%2FJPY%22%7D%2C%7B%22name%22%3A%22FX%3AUSDCHF%22%2C%22displayName%22%3A%22USD%2FCHF%22%7D%2C%7B%22name%22%3A%22FX%3AAUDUSD%22%2C%22displayName%22%3A%22AUD%2FUSD%22%7D%2C%7B%22name%22%3A%22FX%3AUSDCAD%22%2C%22displayName%22%3A%22USD%2FCAD%22%7D%5D%7D%2C%7B%22name%22%3A%22Stocks%22%2C%22symbols%22%3A%5B%7B%22name%22%3A%22NASDAQ%3ATSLA%22%2C%22displayName%22%3A%22TESLA%2C%20INC.%22%7D%2C%7B%22name%22%3A%22NASDAQ%3AAAPL%22%2C%22displayName%22%3A%22APPLE%20INC.%22%7D%2C%7B%22name%22%3A%22NASDAQ%3ANVDA%22%2C%22displayName%22%3A%22%20NVIDIA%20CORPORATION%22%7D%2C%7B%22name%22%3A%22NASDAQ%3ANFLX%22%2C%22displayName%22%3A%22NETFLIX%2C%20INC.%22%7D%2C%7B%22name%22%3A%22NYSE%3ABABA%22%2C%22displayName%22%3A%22ALIBABA%20GROUP%20HOLDING%20LIMITED%22%7D%5D%7D%2C%7B%22name%22%3A%22Crypto%22%2C%22symbols%22%3A%5B%7B%22name%22%3A%22BINANCE%3ABTCUSDT%22%2C%22displayName%22%3A%22%20BITCOIN%20%2F%20TETHERUS%22%7D%2C%7B%22name%22%3A%22BINANCE%3AETHUSDT%22%2C%22displayName%22%3A%22%20ETHEREUM%20%2F%20TETHERUS%22%7D%2C%7B%22name%22%3A%22BINANCE%3ASOLUSDT%22%2C%22displayName%22%3A%22SOL%20%2F%20TETHERUS%22%7D%2C%7B%22name%22%3A%22BINANCE%3ABNBUSDT%22%2C%22displayName%22%3A%22BINANCE%20COIN%20%2F%20TETHERUS%22%7D%2C%7B%22name%22%3A%22BINANCE%3ADOGEUSDT%22%2C%22displayName%22%3A%22DOGECOIN%20%2F%20TETHERUS%22%7D%5D%7D%5D%2C%22showSymbolLogo%22%3Atrue%2C%22colorTheme%22%3A%22light%22%2C%22isTransparent%22%3Afalse%2C%22utm_source%22%3A%22perpetual-advisor.com%22%2C%22utm_medium%22%3A%22widget%22%2C%22utm_campaign%22%3A%22market-quotes%22%2C%22page-uri%22%3A%22perpetual-advisor.com%2F%22%7D
📊 Risk Score Breakdown
Total Risk Score
95/100
Contributing Factors
Recent Domain
Domain age is 1 day.
Obfuscation
Detection of unicode/unescape obfuscation in JS.
Content
Generic financial scam template.
🔬 Comprehensive Threat Analysis
Threat Type
Banking Credential Harvester
Target
Perpetual Capital Advisors users (International)
Attack Method
Brand impersonation + obfuscated JavaScript
Exfiltration Channel
Form submission (backend endpoint not detected - likely JavaScript-based)
Risk Assessment
CRITICAL - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)
⚠️ Indicators of Compromise
- Kit types: Credential Harvester, OTP Stealer, Banking, Personal Info
- 3 obfuscation techniques
🏢 Brand Impersonation Analysis
Impersonated Brand
Perpetual Capital Advisors
Fake Service
Investment/Brokerage
Fraudulent Claims
⚔️ Attack Methodology
Primary Method: Credential/Financial Harvest
The site uses a deceptive landing page to entice users to 'Open Account'. It likely proceeds to a secondary page for PII and financial account harvesting.
Secondary Method: JS Obfuscation
Used to hide the destination of the form submission to bypass basic security scanners.
🌐 Infrastructure Indicators of Compromise
Domain Information
Domain
perpetual-advisor.com
Registered
2026-04-15
Registrar
Unknown
Status
Active
🤖 AI-Extracted Threat Intelligence
Similar Websites
Pages with identical visual appearance (based on perceptual hash)
Perpetual Capital Advisors
http://perpetualadvs.com
May 24, 2026
Perpetual Capital Advisors
https://perpetualadvs.com/
May 24, 2026
Perpetual Capital Advisors
http://perpetual-advis.com
May 08, 2026
Perpetual Capital Advisors
https://perpetual-advis.com/
May 08, 2026
Perpetual Capital Advisors
https://perpetual-advisor.com/
Apr 16, 2026
Scan History for perpetual-advisor.com
Found 1 other scan for this domain
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.