SafeMode - Analysis: producumauthori.github.io

Captura Visual

Información de Detección

https://producumauthori.github.io/MaterialsPOEmailedDL/

Detected Brand

Microsoft

Country

Unknown

Confianza

100%

HTTP Status

200

Report ID

5b739905-07a…

Analyzed

2026-06-02 22:23

Hashes de Contenido (Similitud HTML)

Used to detect similar phishing pages based on HTML content

Algorithm	Hash Value
CONTENT TLSH	T12D41EB361054ADB7018382D1B7FAAB1B76D5C285CF531B0156F8C39C0FEAD46EE68295
CONTENT ssdeep	48:TGj7CPy9DmuiA4u/90ZwiglHalxqonX0e:TGjWM1iA4uC8onke

Hashes Visuales (Similitud de Captura)

Used to detect visually similar phishing pages based on screenshots

Algorithm	Hash Value
VISUAL pHash	881e7369d996a68e
VISUAL aHash	00003c3c18180000
VISUAL dHash	31cee5b1b2b3cdd1
VISUAL wHash	00087f3d187d6f6d
VISUAL colorHash	3100a000080
VISUAL cropResistant	b0f096a0b9bea1a9,31cee5b1b2b3cdd1

Análisis de Código

Risk Score 60/100

Nivel de Amenaza ALTO

⚠️ Phishing Confirmed

🎣 Credential Harvester

📡 API Calls Detected

https://formsubmit.co/0a8997087d87c2376c18cb1ab885081c
https://ipapi.co/json/

📊 Desglose de Puntuación de Riesgo

Total Risk Score

70/100

Contributing Factors

Active Phishing Kit

Detected kit types: Credential Harvester

🔬 Análisis Integral de Amenazas

Tipo de Amenaza

Credential Harvesting Kit

Objetivo

Microsoft users

Método de Ataque

Phishing webpage

Canal de Exfiltración

Form submission (backend endpoint not detected - likely JavaScript-based)

Evaluación de Riesgo

HIGH - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)

⚠️ Indicators of Compromise

Kit types: Credential Harvester

🏢 Análisis de Suplantación de Marca

Impersonated Brand

Microsoft

Official Website

https://www.microsoft.com

Fake Service

Account login portal

⚔️ Metodología de Ataque

Primary Method: Credential Harvesting

Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.

Secondary Method: Client-Side Form Interception

JavaScript intercepts form submissions before they reach the fake backend. This allows real-time credential harvesting and validation without server round-trips.

🌐 Indicadores de Compromiso de Infraestructura

Domain Information

Dominio

producumauthori.github.io

Registered

Unknown

Registrar

Unknown

Estado

Hosting platform (subdomain)

Hosting Information

Provider

Unknown

ASN

Phishing Analysis

Captura Visual

Información de Detección

Hashes de Contenido (Similitud HTML)

Hashes Visuales (Similitud de Captura)

Análisis de Código

📡 API Calls Detected

📊 Desglose de Puntuación de Riesgo

Contributing Factors

🔬 Análisis Integral de Amenazas

⚠️ Indicators of Compromise

🏢 Análisis de Suplantación de Marca

⚔️ Metodología de Ataque

Primary Method: Credential Harvesting

Secondary Method: Client-Side Form Interception

🌐 Indicadores de Compromiso de Infraestructura

Domain Information

Hosting Information

🤖 AI-Extracted Threat Intelligence