EN ES PT
Back to Stats

Visual Capture

No screenshot available

Detection Info

https://2026-07-14.urldance.com/us?howtosuecslplasma.org#nolanguage
Detected Brand
Unknown
Country
International
Confidence
85%
HTTP Status
200
Report ID
fc87f648-479…
Analyzed
2026-07-13 22:36

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T177517565C108DD3B9271C1D0E571A32C96CD824993530B98A7EC473C27EB9A6DC6FEC8
CONTENT ssdeep
48:OzYfERLQ8mHDQeMt5MSjWAUf1sHcKtub8CXSL5fh6qLv:Oz3t5Mvq8KtuXoNhhv

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
aa4999738ed87362
VISUAL aHash
f0f1e1db8787070f
VISUAL dHash
03030f330f1f1f3f
VISUAL wHash
f0e1e1db8387070f
VISUAL colorHash
07200218008
VISUAL cropResistant
03030f330f1f1f3f

Code Analysis

Risk Score 65/100
Threat Level MEDIO
⚠️ Phishing Confirmed
🎣 Credential Harvester

🔬 Threat Analysis Report

• Threat: Gated Content Phishing
• Target: Unspecified
• Method: Password-locked landing page
• Exfil: Unknown (hidden via obfuscated JS)
• Indicators: Obfuscated eval/fromCharCode, gated access
• Risk: Medium

🔒 Obfuscation Detected

  • eval
  • fromCharCode
  • unescape
  • document.write
  • hex_escape
  • unicode_escape

📊 Risk Score Breakdown

Total Risk Score
65/100

Contributing Factors

Obfuscation
Use of eval and fromCharCode is a common evasion technique.
Gated content
Password protected landing pages often host phishing or illicit files.

🔬 Comprehensive Threat Analysis

Threat Type
Credential Harvesting Kit
Target
General public
Attack Method
credential harvesting forms + obfuscated JavaScript
Exfiltration Channel
Form submission (backend endpoint not detected - likely JavaScript-based)
Risk Assessment
HIGH - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)

⚠️ Indicators of Compromise

  • Kit types: Credential Harvester
  • 25 obfuscation techniques

🏢 Brand Impersonation Analysis

⚔️ Attack Methodology

Primary Method: Credential Harvesting

The site uses a password wall to entice users to enter information, likely testing for common passwords or gating access to phishing kits.

Secondary Method: Evasion

Extensive use of obfuscation prevents automated security scanners from identifying the underlying payload.

🌐 Infrastructure Indicators of Compromise

Domain Information

Domain
urldance.com
Registered
2024-03-28
Registrar
None
Status
None

🤖 AI-Extracted Threat Intelligence

😰
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.