EN ES PT

Phishing Analysis

Detailed analysis of captured phishing page

Back to Stats

Captura Visual

No screenshot available

Información de Detección

http://d316dh04.eu1.hubspotlinks.com/Ctc/GG%20113/d316DH04/VW9BVl94v_cXW8R-YVj4xfKPmW6YVQGc4TXj_qN7xs-ww3lSbNV1-WJV7CgKQ8W8cLs8n2xT-ybW3YsRVH6dxbSLW772P3f3fJVFVW8bGTkz3l7rDpW35-zk91GMb13W1836X02sBMjPW8GrbGZ1mP0yKW7WYF7F7kLvp_W7jTtGz7rsfnzW3j2t9b99CRXZW8VSqVy4G0yDRW15d3rB12fc5TW79q_9w5wz1H1W3SwbZx30_NX8W2wC2Vj1byl83W2bSShT2jcd0SW15lggk1bbyWmW11pMrY5blp1NW4ksgn87-L1lgW3BzGDl4qBMLnW1y8W0t5fPB9cW6MTqjR2fgbH_3f5s1
Detected Brand
Facebook
Country
International
Confianza
100%
HTTP Status
200
Report ID
d9383e0e-f8d…
Analyzed
2025-12-21 14:43
Final URL (after redirects)
https://www.facebook.com/login/?next=https%3A%2F%2Fwww.facebook.com%2FAuctim%3Futm_medium%3Demail%26_hsenc%3Dp2ANqtz-9EjMxc__sdci6zkQyveMsy8UdzWFdT2thQIOeFUM7oNspdhpbtBzGkLVwmwWJUUNVYfCzWi9lwKJkjrX7c6ZLMlCA1e7Hp3Y_nNFAgeCMonpcas60%26_hsmi%3D67103923%26utm_content%3D67103923%26utm_source%3Dhs_email

Hashes de Contenido (Similitud HTML)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T18A23C9659209B0620B7A4FF0E87D021712D7595FF8B2A4A09D2AF7E634C3FF4AD5E108
CONTENT ssdeep
768:pPtZCKpTQDvxJ0hnhnOBsaVFHqqZjispgNmzUmw2E+GnIWnIjiD99jifIAaiq9ua:pPtZCKZQDvxJ0hhOBsaVFHqqZjispgNB

Hashes Visuales (Similitud de Captura)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
b372cc815ccc99b9
VISUAL aHash
efe7c7c4476fffff
VISUAL dHash
8c0f8d099d99ee36
VISUAL wHash
67c7c0c0454f6fc3
VISUAL colorHash
06200048040
VISUAL cropResistant
8c0f8d099d99ee36,c749035cc0c51719,0008303232100800,0d070d0781d14d47

Análisis de Código

Risk Score 70/100
Nivel de Amenaza ALTO
🎣 Credential Harvester 🎣 OTP Stealer 🎣 Card Stealer 🎣 Banking 🎣 Personal Info

🔬 Threat Analysis Report

• Amenaza: Kit de phishing para robo de credenciales
• Objetivo: Usuarios de Facebook
• Método: Formulario falso que roba email/teléfono y contraseña
• Exfil: Datos probablemente enviados a un servidor malicioso controlado por el atacante
• Indicadores: Discordancia de dominio, dominio no oficial hubspotlinks.com
• Riesgo: ALTO - Robo inmediato de credenciales

🎯 Kit Endpoints

  • /reg/?entry_point=login&next=https%3A%2F%2Fwww.facebook.com%2FAuctim%3Futm_medium%3Demail%26_hsenc%3Dp2ANqtz-9EjMxc__sdci6zkQyveMsy8UdzWFdT2thQIOeFUM7oNspdhpbtBzGkLVwmwWJUUNVYfCzWi9lwKJkjrX7c6ZLMlCA1e7Hp3Y_nNFAgeCMonpcas60%26_hsmi%3D67103923%26utm_content%3D67103923%26utm_source%3Dhs_email
  • https://www.facebook.com/recover/initiate/?privacy_mutation_token=eyJ0eXBlIjo1LCJjcmVhdGlvbl90aW1lIjoxNzY2MzI4MTM0fQ%3D%3D&ars=facebook_login&next=https%3A%2F%2Fwww.facebook.com%2FAuctim%3Futm_medium%3Demail%26_hsenc%3Dp2ANqtz-9EjMxc__sdci6zkQyveMsy8UdzWFdT2thQIOeFUM7oNspdhpbtBzGkLVwmwWJUUNVYfCzWi9lwKJkjrX7c6ZLMlCA1e7Hp3Y_nNFAgeCMonpcas60%26_hsmi%3D67103923%26utm_content%3D67103923%26utm_source%3Dhs_email
  • https://l.facebook.com/l.php?u=https%3A%2F%2Fabout.meta.com%2Ftechnologies%2Fmeta-pay&h=AT04y0n9W0TwBeh4S5531LVuDHy4XVG0y9IxP1bmFtFZqkfn_muXHKlZitfLhZkVhBs97sHbb0qwFWmafanZOnRcdrGEjXA5dFzi3LSL44QzD3ctLqC_Zpp58CUDYcp4Ilig_cgs2J_GipNa_pZTlw
  • https://www.facebook.com/login/

📡 API Calls Detected

  • GET

Similar Websites

Pages with identical visual appearance (based on perceptual hash)

Screenshot
Facebook
http://tinyurl.com/6o7eplr
Jun 30, 2026
 Screenshot
Facebook/Meta
https://amlzy.com/
Feb 27, 2026
 Screenshot
Facebook/Meta
http://facebook.profiile.us.cc/share/p/19RGPjNd3sH/profile.p...
Feb 24, 2026
 Screenshot
Facebook/Meta
https://call.sanaweb.workers.dev/login/device-based/regular/...
Feb 21, 2026

Scan History for d316dh04.eu1.hubspotlinks.com

Found 3 other scans for this domain

😰
"Nunca pensé que me pasaría a mí"
Esto dicen las 2.3 millones de víctimas cada año. No esperes a ser una estadística.