EN ES PT
Back to Stats

Visual Capture

Screenshot of event-bulktrade.com

Detection Info

https://event-bulktrade.com/
Detected Brand
Bulk Network
Country
International
Confidence
100%
HTTP Status
200
Report ID
d2327503-42e…
Analyzed
2026-07-04 23:32

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T19E23B433D295CA720D8746CCF2D0E718269A834BBB3215CDB7D092BBA78DDE5942538C
CONTENT ssdeep
768:R36CufFQcNcKcPcRc+cJZO4DifSpO9lFW60i4zcAIXyob13Rb4FW62iyLJcAIQ+v:B968pOlFW+dBOFWBOnAR70

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
c81ea3709fa07e63
VISUAL aHash
0000001818c1e37e
VISUAL dHash
960915b2311796d0
VISUAL wHash
5a00183898c3ffff
VISUAL colorHash
31000000000
VISUAL cropResistant
960915b2311796d0

Code Analysis

Risk Score 79/100
Threat Level ALTO
āš ļø Phishing Confirmed
šŸŽ£ Credential Harvester šŸŽ£ OTP Stealer šŸŽ£ Personal Info

šŸ”¬ Threat Analysis Report

• Threat: Crypto Drainer Phishing
• Target: Bulk Network Users
• Method: Reward claim incentive leading to wallet drainer
• Exfil: Obfuscated JS exfiltration to external C2
• Indicators: 'Claim Rewards' button, JS obfuscation
• Risk: High

šŸ”’ Obfuscation Detected

  • atob
  • fromCharCode
  • unescape

šŸ“” API Calls Detected

  • POST

šŸ“Š Risk Score Breakdown

Total Risk Score
95/100

Contributing Factors

Obfuscated JS
Detection of atob/fromCharCode used to hide malicious logic.
Domain Reputation
Young domain used for impersonation.

šŸ”¬ Comprehensive Threat Analysis

Threat Type
Two-Factor Authentication Stealer
Target
Bulk Network users (International)
Attack Method
Brand impersonation + credential harvesting forms + obfuscated JavaScript
Exfiltration Channel
Form submission (backend endpoint not detected - likely JavaScript-based)
Risk Assessment
HIGH - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)

āš ļø Indicators of Compromise

  • Kit types: Credential Harvester, OTP Stealer, Personal Info
  • 24 obfuscation techniques

šŸ¢ Brand Impersonation Analysis

Impersonated Brand
Bulk Network
Official Website
https://bulk.network/
Fake Service
Crypto Reward Airdrop

Fraudulent Claims

āš”ļø Attack Methodology

Primary Method: Wallet Drainer

The site prompts users to connect their Web3 wallet (e.g., MetaMask) to claim rewards, subsequently triggering a malicious transaction request.

Secondary Method: Phishing Landing Page

Uses deceptive UI to mimic official project branding and capture user trust.

Target Blockchain
Ethereum/EVM

🌐 Infrastructure Indicators of Compromise

Domain Information

Domain
event-bulktrade.com
Registered
2026-06-01
Registrar
Unknown
Status
Active

šŸ¤– AI-Extracted Threat Intelligence

😰
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.