SafeMode - Analysis: xiaoqianbaoguanwanggw.com.cn

EN ES PT

Back to Stats

Captura Visual

Screenshot of xiaoqianbaoguanwanggw.com.cn

Información de Detección

https://xiaoqianbaoguanwanggw.com.cn/

Detected Brand

Xiaoqianbao (小钱包)

Country

Unknown

Confianza

90%

HTTP Status

200

Report ID

83ce1a85-e0c…

Analyzed

2026-05-23 10:12

Hashes de Contenido (Similitud HTML)

Used to detect similar phishing pages based on HTML content

Algorithm	Hash Value
CONTENT TLSH	T121A20B34A8A2BE7F40C7D2F5A3705B0F62E2D389CA778B0AA7F593891BD2C41CD51449
CONTENT ssdeep	192:r57eWWLhvDix7fnNE3Sm9xhOv3CbS3Cm4VQKTDB:r57RWlO7PNGSmo3YSym4V/DB

Hashes Visuales (Similitud de Captura)

Used to detect visually similar phishing pages based on screenshots

Algorithm	Hash Value
VISUAL pHash	c24045aded6d39b3
VISUAL aHash	00000000ffffffff
VISUAL dHash	c6cc88d5002aaa2b
VISUAL wHash	00000000ffffffff
VISUAL colorHash	0f600050000
VISUAL cropResistant	e0a6b6d2f6a9808d,554daa2b94aa2b2b,b8c6c48cc88c9442

Análisis de Código

Risk Score 15/100

Nivel de Amenaza ALTO

⚠️ Phishing Confirmed

🔒 Obfuscation Detected

eval
unescape
hex_escape
unicode_escape
js_packer
base64_strings

📊 Desglose de Puntuación de Riesgo

Total Risk Score

70/100

Contributing Factors

Credential Harvesting

Credential harvesting detected with 1 form(s) capturing sensitive data

Code Obfuscation

JavaScript code obfuscated using 1159 technique(s) to evade detection

🔬 Análisis Integral de Amenazas

Tipo de Amenaza

Xiaoqianbao (小钱包) Credential Harvester

Objetivo

Xiaoqianbao (小钱包) users

Método de Ataque

credential harvesting forms + obfuscated JavaScript

Canal de Exfiltración

Form submission (backend endpoint not detected - likely JavaScript-based)

Evaluación de Riesgo

LOW - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)

⚠️ Indicators of Compromise

1159 obfuscation techniques

🏢 Análisis de Suplantación de Marca

Impersonated Brand

Xiaoqianbao (小钱包)

Official Website

N/A

Fake Service

Credential harvesting service

⚔️ Metodología de Ataque

Primary Method: Xiaoqianbao (小钱包) Credential Harvesting

Fake Xiaoqianbao (小钱包) login page with 1 form. Victim enters credentials which are captured and transmitted to attacker's server. Page may impersonate Xiaoqianbao (小钱包) official login to appear legitimate.

Secondary Method: JavaScript Obfuscation

Malicious code is obfuscated using 1159 techniques to evade detection by security scanners and make reverse engineering more difficult.

🌐 Indicadores de Compromiso de Infraestructura

Domain Information

Dominio

xiaoqianbaoguanwanggw.com.cn

Registered

2026-03-24 14:57:28+00:00

Registrar

Web Commerce Communications Limited

Estado

Active (59 days old)

Hosting Information

Provider

Web Commerce Communications Limited

ASN

🤖 AI-Extracted Threat Intelligence

😰

"Nunca pensé que me pasaría a mí"

Esto dicen las 2.3 millones de víctimas cada año. No esperes a ser una estadística.