EN ES PT
Back to Stats

Visual Capture

Screenshot of apyx-financial.com

Detection Info

https://apyx-financial.com/
Detected Brand
APX Finance
Country
International
Confidence
98%
HTTP Status
200
Report ID
c83d34b6-aef…
Analyzed
2026-07-06 23:37

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T198412563A3844817432793D14FC7B26492AA4A9FE5011D019AEC53AD07E9FF4E8673CA
CONTENT ssdeep
48:TBMYYIJjPjzdNfYoHYPTNR87TNlQfyzWrSQT1vpOKICV1:TxYsLjY8YAXm9SQ5vpPBV1

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
cc9c33338c8e3733
VISUAL aHash
0200181818180000
VISUAL dHash
0610303030300000
VISUAL wHash
0f003cbcbcbc0000
VISUAL colorHash
38000030000
VISUAL cropResistant
0610303030300000

Code Analysis

Risk Score 9/100
Threat Level ALTO
⚠️ Phishing Confirmed

🔬 Threat Analysis Report

• Threat: Crypto Wallet Drainer
• Target: APX Finance users
• Method: Malicious voting portal
• Exfil: Wallet signature request
• Indicators: Obfuscated JS, new domain
• Risk: High

🔒 Obfuscation Detected

  • atob
  • fromCharCode
  • unescape

📡 API Calls Detected

  • POST

📊 Risk Score Breakdown

Total Risk Score
95/100

Contributing Factors

Domain Age
Domain registered 6 days ago.
Technical Obfuscation
Presence of atob/fromCharCode used to hide malicious scripts.

🔬 Comprehensive Threat Analysis

Threat Type
APX Finance Phishing Landing Page
Target
APX Finance users (International)
Attack Method
Brand impersonation + obfuscated JavaScript
Exfiltration Channel
Form submission (backend endpoint not detected - likely JavaScript-based)
Risk Assessment
LOW - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)

⚠️ Indicators of Compromise

  • 5 obfuscation techniques

🏢 Brand Impersonation Analysis

Impersonated Brand
APX Finance
Official Website
https://apx.finance/
Fake Service
Governance voting

Fraudulent Claims

⚔️ Attack Methodology

Primary Method: Wallet Drainer

The site uses a deceptive 'vote' interface to prompt the user to connect their Web3 wallet and sign a transaction that grants the attacker access to assets.

Secondary Method: Brand Impersonation

Uses official-looking branding and logos to trick users into believing they are interacting with the genuine APX Finance governance portal.

Target Blockchain
Ethereum/EVM

🌐 Infrastructure Indicators of Compromise

Domain Information

Domain
apyx-financial.com
Registered
2026-06-30
Registrar
Unknown
Status
Active

🤖 AI-Extracted Threat Intelligence

Similar Websites

Pages with identical visual appearance (based on perceptual hash)

😰
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.