Phishing Analysis
Detailed analysis of captured phishing page
Captura Visual
Información de Detección
https://dappfix-mainnet.pages.dev/0.730454681609271/wallet.html/
Detected Brand
Unknown
Country
International
Confianza
95%
HTTP Status
200
Report ID
d8344e60-83f…
Analyzed
2026-03-17 19:19
Hashes de Contenido (Similitud HTML)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1DFD3C832D110BA3711E392E956B15AAFB7C2A766D937030737F897980FDAF20DE12245 |
|
CONTENT
ssdeep
|
1536:ZX5NaGq5Na455Na455Na455Na455Na455Na455Na4+:z |
Hashes Visuales (Similitud de Captura)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
807f3f60607f7e40 |
|
VISUAL
aHash
|
003f7fff7fff7f7f |
|
VISUAL
dHash
|
c1fbf8e0c0e0e0c0 |
|
VISUAL
wHash
|
00003c3c00001030 |
|
VISUAL
colorHash
|
07006000000 |
|
VISUAL
cropResistant
|
c1fbf8e0c0e0e0c0,0101010101000101 |
Análisis de Código
Risk Score
50/100
Nivel de Amenaza
ALTO
⚠️ Phishing Confirmed
🎣 Banking
🔬 Threat Analysis Report
• Amenaza: Phishing
• Objetivo: Usuarios de criptomonedas
• Método: Impersonación de rectificación de monederos.
• Exfil: Desconocido, probablemente para robar credenciales y drenar monederos.
• Indicadores: Alojamiento gratuito, tema de criptomonedas, falta de marca, lenguaje genérico.
• Riesgo: ALTO
📊 Desglose de Puntuación de Riesgo
Total Risk Score
95/100
Contributing Factors
Free Hosting
The site is hosted on pages.dev, a free hosting service known to be abused by phishers.
Lack of Branding/Impersonation
The content addresses common issues in crypto wallets (rectification) without any clear brand affiliation, which is highly suspect. The domain does not match any known blockchain/crypto brand.
Suspicious Content
The content mentions phrases that can be used to trick users to perform actions such as wallet recovery/syncing that may expose sensitive information.
🔬 Análisis Integral de Amenazas
Tipo de Amenaza
Banking Credential Harvester
Objetivo
General public
Método de Ataque
Phishing webpage
Canal de Exfiltración
Unknown
Evaluación de Riesgo
MEDIUM - Automated credential harvesting with Unknown
⚠️ Indicators of Compromise
- Kit types: Banking
🏢 Análisis de Suplantación de Marca
Impersonated Brand
Unknown Cryptocurrency Wallet/Protocol
Fake Service
Wallet Rectification
⚔️ Metodología de Ataque
Primary Method: Credential Harvesting
The site likely attempts to steal login credentials or gain access to the user's cryptocurrency wallet through social engineering, by requesting them to 'rectify' their wallet via malicious links.
Secondary Method: Malicious Smart Contract (Potential)
A malicious smart contract could be presented as a 'rectification' tool, that may drain the user's wallet of funds, if they interact with the links provided.
Target Blockchain
Ethereum or other EVM compatible chains or others.
🌐 Indicadores de Compromiso de Infraestructura
Domain Information
Dominio
dappfix-mainnet.pages.dev
Registered
None
Registrar
None
Estado
None
🤖 AI-Extracted Threat Intelligence
Similar Websites
Pages with identical visual appearance (based on perceptual hash)
Upside or Unknown
https://dappfix-mainnet.pages.dev/0.730454681609271/wallet.h...
Mar 17, 2026
Upland
http://web-dappconnect.pages.dev/js/js/web3.js
Ene 06, 2026
Upland
http://web-dappconnect.pages.dev/js/web3.js
Ene 06, 2026
Uplift
http://web-bugfix.pages.dev/ext_iframe/static/js/lib/widget_...
Ene 06, 2026
Upside
https://dappfix-mainnet.pages.dev/0.730454681609271/
Ene 04, 2026
Scan History for dappfix-mainnet.pages.dev
Found 4 other scans for this domain
"Nunca pensé que me pasaría a mí"
Esto dicen las 2.3 millones de víctimas cada año. No esperes a ser una estadística.