Phishing Analysis

🔐 Credential Harvesting Forms

🔒 Obfuscation Detected

• atob
• eval
• fromCharCode
• unescape
• document.write
• hex_escape
• unicode_escape
• base64_strings

🎯 Kit Endpoints

• https://api.injuries.to/catalog/76729840294517/COWBOY-DANCE
• https://api.injuries.to/catalog/75911227509248/Ghost-Floating
• https://www.roblox.com/catalog?CatalogContext=1&Keyword=
• https://api.injuries.to/catalog/14618207727/Default-Mood
• https://api.injuries.to/catalog/5938396308/HOLIDAY-Dance-Lil-Nas-X-LNX
• https://api.injuries.to/catalog/103731200042707/Lion-Torso
• https://api.injuries.to/catalog/122687759897103/Sturdy-NYC-Dance
• https://api.injuries.to/catalog/118985157302540/Lion-Left-Leg
• https://api.injuries.to/catalog/75987657232022/Lion-Right-Arm
• https://api.injuries.to/catalog/107708114415320/Big-Guy-Ice-Spice-x-Spongebob
• https://api.injuries.to/catalog/109987159431897/Lion-Dynamic-Head
• /login?returnUrl=
• https://api.injuries.to/catalog/127409920297009/Cop-Idle-2
• https://api.injuries.to/catalog/137569054887756/Lion-Right-Leg
• https://api.injuries.to/catalog/13823339506/Tommy-Archer
• https://api.injuries.to/catalog/131627629608207/Bodycam-activation
• /info/blog?locale=en_us
• https://www.roblox.com/catalog
• https://api.injuries.to/catalog/100377174023628/Lion-Left-Arm

📡 API Calls Detected

• GET
• https://help.roblox.com/hc/articles/30428367965460
• get
• https://ro.blox.com/Ebh5?
• https://apis.
• POST

📤 Form Action Targets

• /search

Domain Information

Hosting Information