EN ES PT
Back to Stats

Visual Capture

Screenshot of kwallet.trade

Detection Info

https://kwallet.trade/
Detected Brand
K-Wallet
Country
International
Confidence
90%
HTTP Status
200
Report ID
d0127f79-f06…
Analyzed
2026-07-14 11:34

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T10C022279A045B93341C7D2E6AB3917ABB7D18283CA93060623F9C35C9FE7D49CD1A523
CONTENT ssdeep
96:TqCIbcs4SZSZSoc8rIxCvWLNefDnwleWQe8u88UQHFdj42VtKeeA:G1bc4IIozI1eLK1Qe8u88VF6LA

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
d2e46d33130ec3e3
VISUAL aHash
c0c0f47c6c2c0000
VISUAL dHash
8407c9e9c9c92070
VISUAL wHash
e0e3fffc6c2c0818
VISUAL colorHash
38000038000
VISUAL cropResistant
8407c9e9c9c92070

Code Analysis

Risk Score 50/100
Threat Level ALTO
⚠️ Phishing Confirmed
🎣 Banking

🔬 Threat Analysis Report

• Threat: Malware/Phishing
• Target: Cryptocurrency users
• Method: Malicious APK distribution
• Exfil: Wallet seed phrases/private keys
• Indicators: Unofficial APK download
• Risk: High (asset loss)

📊 Risk Score Breakdown

Total Risk Score
90/100

Contributing Factors

Malware Distribution
Direct download of Android APK files is a high-risk activity.

🔬 Comprehensive Threat Analysis

Threat Type
Banking Credential Harvester
Target
K-Wallet users (International)
Attack Method
Brand impersonation
Exfiltration Channel
Form submission (backend endpoint not detected - likely JavaScript-based)
Risk Assessment
MEDIUM - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)

⚠️ Indicators of Compromise

  • Kit types: Banking

🏢 Brand Impersonation Analysis

Impersonated Brand
K-Wallet
Fake Service
Crypto wallet application

Fraudulent Claims

⚔️ Attack Methodology

Primary Method: Malware Distribution

Distributing a trojanized or malicious APK under the name of a legitimate financial service to gain control over user crypto wallets.

Secondary Method: Credential Harvesting

The fake app UI inside the mockup implies a standard sign-in/import flow designed to capture keys.

Target Blockchain
BSC and Tron

🌐 Infrastructure Indicators of Compromise

Domain Information

Domain
kwallet.trade
Registered
2025-09-11
Registrar
Unknown
Status
active

🤖 AI-Extracted Threat Intelligence

😰
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.