EN ES PT

Phishing Analysis

Detailed analysis of captured phishing page

Back to Stats

Captura Visual

Screenshot of airbnb-housing.vercel.app

Información de Detección

http://airbnb-housing.vercel.app/
Detected Brand
Airbnb
Country
International
Confidence
100%
HTTP Status
200
Report ID
8058eb51-513…
Analyzed
2026-03-02 14:28
Final URL (after redirects)
https://airbnb-housing.vercel.app/

Hashes de Contenido (Similitud HTML)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T133B35CB43658A97B69B3439360EF2203B23C421BE40E4910B354EDED27DDC9AA477F95
CONTENT ssdeep
1536:CW3j7dH2H6TOq53QQHxh8N61UsXhjaPnQsR+9i/uC+6da:t7ZTokmN6CstZ9it+6M

Hashes Visuales (Similitud de Captura)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
ba3ab5c5c5c34313
VISUAL aHash
ff0000e4ffffffff
VISUAL dHash
173b390900080000
VISUAL wHash
00000000ffffffff
VISUAL colorHash
07c01008000
VISUAL cropResistant
173b390900080000,3f1e3fcbcd058498,3cd6c6a332f3c8f4

Análisis de Código

Risk Score 85/100
Threat Level ALTO
⚠️ Phishing Confirmed
🎣 Credential Harvester 🎣 OTP Stealer 🎣 Banking 🎣 Personal Info

🔬 Threat Analysis Report

• Amenaza: Phishing
• Objetivo: Usuarios de Airbnb
• Método: Suplantación de identidad a través de un sitio web similar
• Exfil: Desconocido, pero los formularios detectados sugieren robo de datos.
• Indicadores: Hosting gratuito, logotipo de la marca, código ofuscado.
• Riesgo: Alto

🔒 Obfuscation Detected

  • atob
  • fromCharCode
  • unescape
  • unicode_escape
  • base64_strings

📊 Desglose de Puntuación de Riesgo

Total Risk Score
90/100

Contributing Factors

Free Hosting and Brand Impersonation
The website is hosted on a free hosting platform (vercel.app) while impersonating Airbnb.
Obfuscated Javascript
The presence of obfuscated Javascript code (atob, fromCharCode, unescape) suggests malicious intent to hide the true purpose of the site.

🔬 Análisis Integral de Amenazas

Tipo de Amenaza
Banking Credential Harvester
Objetivo
Airbnb users (International)
Método de Ataque
Brand impersonation + credential harvesting forms + obfuscated JavaScript
Canal de Exfiltración
Form submission (backend endpoint not detected - likely JavaScript-based)
Evaluación de Riesgo
CRITICAL - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)

⚠️ Indicators of Compromise

  • Kit types: Credential Harvester, OTP Stealer, Banking, Personal Info
  • 33 obfuscation techniques

🏢 Análisis de Suplantación de Marca

Impersonated Brand
Airbnb
Official Website
https://www.airbnb.com/
Fake Service
Airbnb Listing/Login

⚔️ Metodología de Ataque

Primary Method: Credential Harvesting

The attacker likely uses a convincing website that mimics the Airbnb to trick users into entering their login credentials.

🌐 Indicadores de Compromiso de Infraestructura

Domain Information

Domain
airbnb-housing.vercel.app
Registered
None
Registrar
None
Status
None

🤖 AI-Extracted Threat Intelligence

Similar Websites

Pages with identical visual appearance (based on perceptual hash)

Screenshot
Airbnb
https://airbnb-housing.vercel.app/
Abr 04, 2026

Scan History for airbnb-housing.vercel.app

Found 1 other scan for this domain

😰
"Nunca pensé que me pasaría a mí"
Esto dicen las 2.3 millones de víctimas cada año. No esperes a ser una estadística.