Phishing Analysis
Detailed analysis of captured phishing page
Captura Visual
Información de Detección
http://im.nbpublic.com/loading_page/amazon/AmazonGiftCard_10/index.html?lptoken=17e1629705be74da1605&cep=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
Detected Brand
Amazon
Country
International
Confidence
95%
HTTP Status
200
Report ID
6fc5aaa7-cc1…
Analyzed
2026-02-27 11:09
Hashes de Contenido (Similitud HTML)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1056187705449D8BBC2C3C2E086783B6E36C1CA86EE2B1A9886F4D31D1FEBD90ED07155 |
|
CONTENT
ssdeep
|
48:llMLEKOW2IbSAwwy6qj4OQHj4OQgj4OQtj4OQ8pt8BjH5c7BjHY3BjHM/9MBjH8Y:Lsaw9ycAzuozscqK0 |
Hashes Visuales (Similitud de Captura)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
b333333399999926 |
|
VISUAL
aHash
|
e7e7e7ffe7ffffff |
|
VISUAL
dHash
|
4d4d0d294d0d0008 |
|
VISUAL
wHash
|
07078181a581ffff |
|
VISUAL
colorHash
|
07006008000 |
|
VISUAL
cropResistant
|
4d4d0d294d0d0008,5945cd1636aa3834,0e4e2bc4d063a409 |
Análisis de Código
Risk Score
3/100
Threat Level
ALTO
⚠️ Phishing Confirmed
🔬 Threat Analysis Report
• Amenaza: Phishing
• Objetivo: Usuarios de Amazon
• Método: Estafa de tarjeta de regalo
• Exfil: Potencialmente a través de la redirección a un formulario (no visible inmediatamente) o a través de datos recopilados más adelante.
• Indicadores: Coincidencia de dominio, oferta de premio y preguntas sobre regalos.
• Riesgo: Alto
🔒 Obfuscation Detected
- unescape
📡 API Calls Detected
- POST
📊 Desglose de Puntuación de Riesgo
Total Risk Score
90/100
Contributing Factors
Domain Mismatch
The domain does not match the legitimate brand (Amazon).
Impersonation
The page impersonates Amazon by using its logo and branding.
Prize Offer
Offering a gift card is a common phishing tactic.
🔬 Análisis Integral de Amenazas
Tipo de Amenaza
Amazon Phishing Landing Page
Objetivo
Amazon users (International)
Método de Ataque
Brand impersonation + obfuscated JavaScript
Canal de Exfiltración
Form submission (backend endpoint not detected - likely JavaScript-based)
Evaluación de Riesgo
LOW - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)
⚠️ Indicators of Compromise
- 2 obfuscation techniques
🏢 Análisis de Suplantación de Marca
Impersonated Brand
Amazon
Official Website
https://www.amazon.com/
Fake Service
Amazon Gift Card Giveaway
⚔️ Metodología de Ataque
Primary Method: Brand Impersonation
The attacker is impersonating Amazon to trick users into believing they are on a legitimate Amazon-related page, with the aim of stealing credentials or sensitive information.
Secondary Method: Prize Incentive
The offer of a gift card is designed to entice users to interact with the page, making them less likely to question its legitimacy.
🌐 Indicadores de Compromiso de Infraestructura
Domain Information
Domain
im.nbpublic.com
Registered
2022-09-14
Registrar
None
Status
None
🤖 AI-Extracted Threat Intelligence
Similar Websites
Pages with identical visual appearance (based on perceptual hash)
Scan History for im.nbpublic.com
Found 10 other scans for this domain
-
https://im.nbpublic.com/loading_page/paypal/paypal...
http://im.nbpublic.com/loading_page/snack_box/snac...
https://im.nbpublic.com/loading_page/amazon/Amazon...
https://||im.nbpublic.com/loading_page_cpl/amazon/...
https://||im.nbpublic.com/loading_page/amazon/amaz...
https://im.nbpublic.com/loading_page/paypal/paypal...
https://im.nbpublic.com/loading_page/amazon/Amazon...
https://im.nbpublic.com/loading_page/snack_box/sna...
http://im.nbpublic.com/loading_page/snack_box/snac...
http://im.nbpublic.com/loading_page/snack_box/snac...
"Nunca pensé que me pasaría a mí"
Esto dicen las 2.3 millones de víctimas cada año. No esperes a ser una estadística.