EN ES PT

Phishing Analysis

Detailed analysis of captured phishing page

Back to Stats

Captura Visual

Screenshot of rajveer004.github.io

Información de Detección

http://rajveer004.github.io/netflix-clone
Detected Brand
Netflix
Country
International
Confianza
100%
HTTP Status
200
Report ID
351c2efb-7a4…
Analyzed
2026-02-19 23:35
Final URL (after redirects)
https://rajveer004.github.io/netflix-clone/

Hashes de Contenido (Similitud HTML)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T19972A7709081257F018383D9B730AF59B1E6C286C76B1B49B2F5A36E7BC6D168D922DC
CONTENT ssdeep
384:ztf0YzLO06fe0OUOrQjJreWn6f99tf1Pg:zHWe0OUOrQjJq99ti

Hashes Visuales (Similitud de Captura)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
93ec926c73932c93
VISUAL aHash
c7ff3f2c00002c2c
VISUAL dHash
0f2d72d85216c8c8
VISUAL wHash
c7ff3f7e00006c2c
VISUAL colorHash
31400010000
VISUAL cropResistant
fcfcfcbcfcfcf8b1,0f2d72d85216c8c8

Análisis de Código

Risk Score 65/100
Nivel de Amenaza ALTO
⚠️ Phishing Confirmed
🎣 Credential Harvester 🎣 Personal Info

🔬 Threat Analysis Report

• Amenaza: Phishing
• Objetivo: Usuarios de Netflix
• Método: Impersonación a través de un formulario de correo electrónico
• Exfil: Direcciones de correo electrónico (probablemente)
• Indicadores: Alojamiento gratuito, logo de Netflix, formulario
• Riesgo: ALTO

📊 Desglose de Puntuación de Riesgo

Total Risk Score
90/100

Contributing Factors

Free Hosting
The use of free hosting is a major red flag as it is often used by malicious actors.
Brand Impersonation
The site mimics Netflix's design to trick users into entering their credentials.
Form Presence
Presence of an email input form and action to submit data

🔬 Análisis Integral de Amenazas

Tipo de Amenaza
Credential Harvesting Kit
Objetivo
Netflix users (International)
Método de Ataque
Brand impersonation + credential harvesting forms
Canal de Exfiltración
Form submission (backend endpoint not detected - likely JavaScript-based)
Evaluación de Riesgo
HIGH - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)

⚠️ Indicators of Compromise

  • Kit types: Credential Harvester, Personal Info

🏢 Análisis de Suplantación de Marca

Impersonated Brand
Netflix
Official Website
https://www.netflix.com/
Fake Service
Netflix streaming service

⚔️ Metodología de Ataque

Primary Method: Credential Harvesting

The attacker aims to steal user credentials by mimicking the Netflix login page. Users are prompted to enter their email address, which will be sent to the attacker.

🌐 Indicadores de Compromiso de Infraestructura

Domain Information

Dominio
rajveer004.github.io
Registered
None
Registrar
None
Estado
None

🤖 AI-Extracted Threat Intelligence

Similar Websites

Pages with identical visual appearance (based on perceptual hash)

Screenshot
Desconocido
https://cdn.gosafemode.com/screenshots/246b7c2d59ac.png
May 26, 2026
 Screenshot
Netflix
https://netmirr.vercel.app/
May 25, 2026
 Screenshot
Netflix
https://shruti01022004.github.io/NETFLIX-UI-clone/
May 11, 2026
 Screenshot
Netflix
https://rajveer004.github.io/netflix-clone/
Mar 17, 2026

Scan History for rajveer004.github.io

Found 2 other scans for this domain

😰
"Nunca pensé que me pasaría a mí"
Esto dicen las 2.3 millones de víctimas cada año. No esperes a ser una estadística.