EN ES PT

Phishing Analysis

Detailed analysis of captured phishing page

Back to Stats

Captura Visual

Screenshot of berkcred.com

Información de Detección

https://berkcred.com/
Detected Brand
Berk Credit Community Bank
Country
International
Confianza
100%
HTTP Status
200
Report ID
021cf4b7-9cf…
Analyzed
2026-06-19 00:11

Hashes de Contenido (Similitud HTML)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T159D21E338040693702A7C2D66671B71FA3D3820ECE234B46A7F4879D2FCAE96DC1665D
CONTENT ssdeep
384:2J/cf6lAtjRKRRDbrXTmhSk8J3GFeyPFPvX:2J/46lAtjRKRRDbbTeSk4GFeyPFPf

Hashes Visuales (Similitud de Captura)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
ecad125ed232ee41
VISUAL aHash
9dfbf3f1f09000ff
VISUAL dHash
293203032323cc24
VISUAL wHash
00fbf3f1f09000ff
VISUAL colorHash
07000c00000
VISUAL cropResistant
2932c32303022323,f0e8c9f9b0f8f870,0000000000000000,20c8c12e202b2b21,522323022323c4e4

Análisis de Código

Risk Score 76/100
Nivel de Amenaza ALTO
⚠️ Phishing Confirmed
🎣 Credential Harvester 🎣 Card Stealer 🎣 Banking 🎣 Personal Info

🔬 Threat Analysis Report

• Amenaza: Phishing/Robo de credenciales
• Objetivo: Clientes de Berk Credit Community Bank
• Método: Impersonación de un portal bancario
• Exfil: Probablemente mediante envío de formulario JavaScript
• Indicadores: Código ofuscado, URL sospechosa
• Riesgo: Alto

🔒 Obfuscation Detected

  • fromCharCode
  • hex_escape

🎯 Kit Endpoints

  • https://berkcred.com/login.php

📡 API Calls Detected

  • <div><h1>Hi!</h1></div>

📊 Desglose de Puntuación de Riesgo

Total Risk Score
90/100

Contributing Factors

Domain Analysis
Generic non-corporate domain
Technical Obfuscation
Detected obfuscated JS patterns
Content Quality
Spelling errors ('financal', 'involvment')

🔬 Análisis Integral de Amenazas

Tipo de Amenaza
Banking Credential Harvester
Objetivo
Berk Credit Community Bank users (International)
Método de Ataque
Brand impersonation + credential harvesting forms + obfuscated JavaScript
Canal de Exfiltración
Form submission (backend endpoint not detected - likely JavaScript-based)
Evaluación de Riesgo
HIGH - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)

⚠️ Indicators of Compromise

  • Kit types: Credential Harvester, Card Stealer, Banking, Personal Info
  • 16 obfuscation techniques

🏢 Análisis de Suplantación de Marca

Impersonated Brand
Berk Credit Community Bank
Fake Service
Banking Services

Fraudulent Claims

⚔️ Metodología de Ataque

Primary Method: Banking Phishing

The site mimics a banking interface to harvest PII and account credentials from unsuspecting users.

Secondary Method: Credential Harvesting

Using deceptive forms to capture login details.

🌐 Indicadores de Compromiso de Infraestructura

Domain Information

Dominio
berkcred.com
Registered
2026-02-20
Registrar
Unknown
Estado
Active

🤖 AI-Extracted Threat Intelligence

😰
"Nunca pensé que me pasaría a mí"
Esto dicen las 2.3 millones de víctimas cada año. No esperes a ser una estadística.