SafeMode - Analysis: unitestresolve.pages.dev

Captura Visual

No screenshot available

Información de Detección

http://unitestresolve.pages.dev/

Detected Brand

Unknown

Country

International

Confianza

100%

HTTP Status

200

Report ID

75a0d37e-4f9…

Analyzed

2026-02-13 17:38

Final URL (after redirects)

https://unitestresolve.pages.dev/

Hashes de Contenido (Similitud HTML)

Used to detect similar phishing pages based on HTML content

Algorithm	Hash Value
CONTENT TLSH	T1BA43D8B217491EFE10C783E0B722773673A863E5E56F820682F847255B8BD5ADC735A0
CONTENT ssdeep	384:arhb8fgbnziNBXELiy/Y+nPacLDmC4mGHXISBhq8t8DDOmQpvqYtZ:4lbnzsZELk+CuD63HX38umQpiQ

Hashes Visuales (Similitud de Captura)

Used to detect visually similar phishing pages based on screenshots

Algorithm	Hash Value
VISUAL pHash	ce9634343696963e
VISUAL aHash	76383c3c30383000
VISUAL dHash	c4f06169e0e0e0e0
VISUAL wHash	7e78fc7c78783800
VISUAL colorHash	38002600040
VISUAL cropResistant	c4f06169e0e0e0e0

Análisis de Código

Risk Score 79/100

Nivel de Amenaza ALTO

⚠️ Phishing Confirmed

🎣 Credential Harvester 🎣 OTP Stealer 🎣 Banking 🎣 Personal Info

🔬 Threat Analysis Report

• Amenaza: Phishing
• Objetivo: Usuarios de criptomonedas
• Método: Suplantación de identidad y estafa de conexión de billetera
• Exfil: Desconocido, probablemente robar activos de criptomonedas al solicitar al usuario que conecte sus billeteras.
• Indicadores: Alojamiento gratuito, uso del logotipo de la marca, oferta de servicio inusual, Javascript ofuscado.
• Riesgo: Alto

🔒 Obfuscation Detected

fromCharCode
unescape
unicode_escape

🎯 Kit Endpoints

https://tailwindcss.com/docs/content-configuration
https://tailwindcss.com/docs/using-with-preprocessors#nesting
https://tailwindcss.com/docs/installation
https://evilmartians.com/chronicles/postcss-8-plugin-migration`),m.env.LANG&&m.env.LANG.startsWith(
https://tailwindcss.com`}),...e.nodes])},container:(()=
https://mths.be/cssesc
https://files.coinmarketcap.com/static/widget/coinMarquee.js
https://3rdparty-apis.coinmarketcap.com/v1/cryptocurrency/widget
https://cdn.tailwindcss.com
https://tailwindcss.com/docs/content-configuration#pattern-recommendations
https://twitter.com/browserslist
https://s2.coinmarketcap.com/static/img/coins/32x32/
https://tailwindcss.com/docs/content-configuration#safelisting-classes
https://3rdparty-apis.coinmarketcap.com/v1/cryptocurrency/top
https://tailwindcss.com/docs/content-configuration#discarding-classes
https://tailwindcss.com/docs/upgrade-guide#remove-dark-mode-configuration
https://www.w3ctech.com/topic/2226`));let
https://coinmarketcap.com/currencies/
https://tailwindcss.com/docs/upgrade-guide#prefix-cannot-be-a-function
https://tailwindcss.com/docs/upgrade-guide#configure-content-sources
https://coinmarketcap.com/
https://tailwindcss.com/docs/upgrade-guide#replace-variants-with-layer

📊 Desglose de Puntuación de Riesgo

Total Risk Score

90/100

Contributing Factors

Free Hosting + Brand Logo

The site uses free hosting (pages.dev) and includes the CoinMarketCap logo, indicating an attempt to appear legitimate.

Suspicious Service Offering

The website claims to offer 'Blockchain rectification', which is a suspicious offering

JavaScript Obfuscation

Obfuscated javascript indicates malicious intent and attempts to hide what the script does.

🔬 Análisis Integral de Amenazas

Tipo de Amenaza

Banking Credential Harvester

Objetivo

General public

Método de Ataque

obfuscated JavaScript

Canal de Exfiltración

Unknown

Evaluación de Riesgo

HIGH - Automated credential harvesting with Unknown

⚠️ Indicators of Compromise

Kit types: Credential Harvester, OTP Stealer, Banking, Personal Info
24 obfuscation techniques

🏢 Análisis de Suplantación de Marca

Impersonated Brand

CoinMarketCap (Implied)

Official Website

coinmarketcap.com

Fake Service

Blockchain Rectification

Fraudulent Claims

⚔️ Metodología de Ataque

Primary Method: Wallet Phishing

The site attempts to lure users into connecting their cryptocurrency wallets to a malicious application, potentially leading to the theft of funds and/or harvesting user data