Phishing Analysis
Detailed analysis of captured phishing page
Visual Capture
Detection Info
https://adladklaskdladklasdkas.onrender.com/
Detected Brand
Banco Pichincha
Country
Ecuador (based on Banco Pichincha)
Confidence
95%
HTTP Status
200
Report ID
e494f866-119β¦
Analyzed
2026-01-30 05:56
Content Hashes (HTML Similarity)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T17731422150C5197FC003E1ED6380EE62B0C3C506D9427951E3FC895A57E8D41D755DFC |
|
CONTENT
ssdeep
|
24:gY0CxZhVG4TGb4fdW77fYA69D7MXs47cWCNJXqCwE9Hs3wJlrIliHEC:JTde4Y7Zs7MXd7mnqu9HsosgkC |
Visual Hashes (Screenshot Similarity)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
9b4c66b1ce4c31e6 |
|
VISUAL
aHash
|
00000000ffffffff |
|
VISUAL
dHash
|
067155206850594c |
|
VISUAL
wHash
|
00000000ffffffff |
|
VISUAL
colorHash
|
060000001c0 |
|
VISUAL
cropResistant
|
680c105810304c0c,9100166930020c71 |
Code Analysis
Risk Score
80/100
Threat Level
ALTO
β οΈ Phishing Confirmed
π£ Credential Harvester
Discord Webhook
π¬ Threat Analysis Report
β’ Threat: Phishing
β’ Target: Banco Pichincha customers
β’ Method: Impersonation and form-based data theft
β’ Exfil: Discord Webhooks (likely)
β’ Indicators: Mismatched domain, requests sensitive data
β’ Risk: High
π‘ API Calls Detected
- https://api.ipify.org?format=json
π Risk Score Breakdown
Total Risk Score
90/100
Contributing Factors
Domain Mismatch
The domain is completely unrelated to Banco Pichincha. This is a critical indicator.
Form Data Collection
The site requests highly sensitive information like ID and email, which is a key element of phishing.
Free Hosting
The site is hosted on a free platform, further raising the concern.
JavaScript Exfiltration
The presence of Discord webhooks found indicates data may be being exfiltrated to Discord.
π¬ Comprehensive Threat Analysis
Threat Type
Credential Harvesting Kit
Target
Banco Pichincha users (Ecuador (based on Banco Pichincha))
Attack Method
Brand impersonation + credential harvesting forms
Exfiltration Channel
Discord Webhooks (1 detected)
Risk Assessment
CRITICAL - Automated credential harvesting with Discord Webhooks (1 detected)
β οΈ Indicators of Compromise
- 1 Discord webhook(s)
- Kit types: Credential Harvester
π’ Brand Impersonation Analysis
Impersonated Brand
Banco Pichincha
Official Website
null
Fake Service
Credit Card application
Fraudulent Claims
βοΈ Attack Methodology
Primary Method: Credential Harvesting
The attacker is using a fake login form to collect user's Banco Pichincha credentials (ID, email, and password).
Secondary Method: Data Exfiltration
The stolen data is sent using javascript and potentially Discord webhooks.
π Infrastructure Indicators of Compromise
Domain Information
Domain
adladklaskdladklasdkas.onrender.com
Registered
Unknown
Registrar
Unknown
Status
Unknown
π¬ JavaScript Deep Analysis
Total Code Size
192Β bytes
π API Endpoints Detected
Discord Webhooks
1
π Obfuscation Detected
- : Light
π€ AI-Extracted Threat Intelligence
Similar Websites
Pages with identical visual appearance (based on perceptual hash)
Banco Pichincha
https://promosenlinea2025.vercel.app/
Jun 12, 2026
Banco Pichincha
https://adladklaskdladklasdkas.onrender.com/
Jan 30, 2026
Banco Pichincha
https://cvcvcvbcvbcvbvcb.onrender.com/
Jan 14, 2026
Banco Pichincha
https://firmafirmafirmafirma.onrender.com/
Jan 14, 2026
Banco Pickle
https://empresasroke-sqoo.onrender.com/
Jan 12, 2026
Scan History for adladklaskdladklasdkas.onrender.com
Found 1 other scan for this domain
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.