EN ES PT

Phishing Analysis

Detailed analysis of captured phishing page

Back to Stats

Visual Capture

Screenshot of swiftresponses.standard.us-east-1.oortstorages.com

Detection Info

https://swiftresponses.standard.us-east-1.oortstorages.com/rsignn.ned
Detected Brand
SCA
Country
International
Confidence
100%
HTTP Status
200
Report ID
ff186218-945…
Analyzed
2026-01-15 05:07

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T19C51623180158E53988386E8E6B5970B37868396C74B1B045FF8937D6BD7D4ACE723E8
CONTENT ssdeep
48:CTw9pchK0Ona/2IDZxkbbi0OnzdudU2g2dMjneIZHSb1pZ:wgTg2C0bOxb2kdEbZ

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
99cc663399cc6699
VISUAL aHash
0000183c3c241800
VISUAL dHash
000c3232324c3008
VISUAL wHash
00001c1c3f273f3f
VISUAL colorHash
070000001c0
VISUAL cropResistant
000c3232324c3008

Code Analysis

Risk Score 100/100
Threat Level ALTO
⚠️ Phishing Confirmed
🎣 Credential Harvester 🎣 Personal Info
Telegram Exfiltration

🔬 Threat Analysis Report

• Threat: Credential harvesting phishing kit
• Target: SCA users
• Method: Fake identity validation form stealing email
• Exfil: Data sent to Telegram bot (token: 8595154854:AAGHZrQO6mO5et6cT57ZNIt1d0grzoBb-PU)
• Indicators: Domain mismatch, recent domain, obfuscated JavaScript
• Risk: HIGH - Immediate credential theft

🔒 Obfuscation Detected

  • atob
  • fromCharCode

📡 API Calls Detected

  • POST

🔑 Telegram Bot Tokens (1)

  • 8595154854:AAGH...rzoBb-PU

💬 Telegram Chat IDs (1)

  • 7286433991

Similar Websites

Pages with identical visual appearance (based on perceptual hash)

Screenshot
Musang86
https://api33cviv.sbs/
Jun 17, 2026
 Screenshot
Musang86
https://api33cmyc.cfd/
Jun 17, 2026
 Screenshot
Unknown
http://ipfs.io/ipfs/bafkreib2fahstorysoaxqmjbklb4sfyugq3wgtp...
Mar 13, 2026
 Screenshot
SeC3
https://zazad.standard.us-east-1.oortstorages.com/rsign.cxzn
Jan 07, 2026
 Screenshot
Unknown
https://editeddoc.standard.us-east-1.oortstorages.com/rsignn...
Jan 06, 2026

Scan History for swiftresponses.standard.us-east-1.oortstorages.com

Found 1 other scan for this domain

😰
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.