SafeMode - Analysis: csxj.com.cn

Captura Visual

Información de Detección

http://csxj.com.cn/

Detected Brand

Trust Wallet

Country

Unknown

Confianza

95%

HTTP Status

200

Report ID

9a932a21-7d1…

Analyzed

2026-06-25 22:12

Hashes de Contenido (Similitud HTML)

Used to detect similar phishing pages based on HTML content

Algorithm	Hash Value
CONTENT TLSH	T1F7F2CA6A1294ADFF32ABCFD1E326373D20E58286ED6B120456B68BB45784F4DFC53481
CONTENT ssdeep	384:FqPFhiyL8jq0c88kxaUPQqChECxXOdbPFu/MebFZEPpImflq1nVGIL:RTPQqCi9d7Fu/zEPo1nf

Hashes Visuales (Similitud de Captura)

Used to detect visually similar phishing pages based on screenshots

Algorithm	Hash Value
VISUAL pHash	c3873c3931d6c4c7
VISUAL aHash	0321707c6c6080c0
VISUAL dHash	9643e5c9c9d22020
VISUAL wHash	4f43777e7ce0c0c0
VISUAL colorHash	38602008000
VISUAL cropResistant	9643e5c9c9d22020

Análisis de Código

Risk Score 3/100

Nivel de Amenaza ALTO

⚠️ Phishing Confirmed

🔒 Obfuscation Detected

document.write

🎯 Kit Endpoints

csxj.com.cn/security/verify
#blog
#verify
csxj.com.cn/help/changelog
csxj.com.cn/about/blog

📊 Desglose de Puntuación de Riesgo

Total Risk Score

40/100

Contributing Factors

Code Obfuscation

JavaScript code obfuscated using 1 technique(s) to evade detection

🔬 Análisis Integral de Amenazas

Tipo de Amenaza

Trust Wallet Phishing Landing Page

Objetivo

Trust Wallet users

Método de Ataque

obfuscated JavaScript

Canal de Exfiltración

Form submission (backend endpoint not detected - likely JavaScript-based)

Evaluación de Riesgo

LOW - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)

⚠️ Indicators of Compromise

1 obfuscation techniques

🏢 Análisis de Suplantación de Marca

Impersonated Brand

Trust Wallet

Official Website

N/A

Fake Service

Credential harvesting service

⚔️ Metodología de Ataque

Primary Method: Malicious Landing Page

Uses Trust Wallet branding to appear legitimate in search results, social media, or advertising networks. Designed to redirect victims to phishing pages or distribute malware while maintaining appearance of authenticity.

Secondary Method: JavaScript Obfuscation

Malicious code is obfuscated using 1 techniques to evade detection by security scanners and make reverse engineering more difficult.

🌐 Indicadores de Compromiso de Infraestructura

Domain Information

Dominio

csxj.com.cn

Registered

2024-08-09 04:04:34+00:00

Registrar

Web Commerce Communications Limited

Estado

Active (older domain)

Hosting Information

Provider