SafeMode - Analysis: booking-clone-sigma.vercel.app

Captura Visual

No screenshot available

Informações de Detecção

http://booking-clone-sigma.vercel.app

Detected Brand

Booking.com

Country

International

Confiança

100%

HTTP Status

200

Report ID

02517644-5a9…

Analyzed

2025-12-21 06:21

Final URL (after redirects)

https://booking-clone-sigma.vercel.app/

Hashes de Conteúdo (Similaridade HTML)

Used to detect similar phishing pages based on HTML content

Algorithm	Hash Value
CONTENT TLSH	T1FD831BA43909F5271EB343AB20EE1503B378121B940D4D70B254FD9EB6F9C9AA067FD9
CONTENT ssdeep	1536:/pt4z3j8sLx4TESLwsGSMBDLw1j90+1LmjzQ:sz3jsTTwsiW16+1b

Hashes Visuais (Similaridade de Captura)

Used to detect visually similar phishing pages based on screenshots

Algorithm	Hash Value
VISUAL pHash	c26bbd446b9194bc
VISUAL aHash	00007e7c347effff
VISUAL dHash	c2c1d8c8e4e4c006
VISUAL wHash	00003c2c347effff
VISUAL colorHash	030000001c0
VISUAL cropResistant	f0c8c9e4c4c022c0,d0c7c0f8c8e0e4d4,02200113814164a4,b0d0d0e0e0e8f8f0,9eebcd8dadf5f5f4

Análise de Código

Risk Score 70/100

Nível de Ameaça ALTO

🎣 Credential Harvester 🎣 OTP Stealer 🎣 Banking 🎣 Personal Info

🔬 Threat Analysis Report

• Threat: Phishing targeting Booking.com users
• Target: Booking.com customers seeking travel accommodations
• Method: Fake Booking.com website attempting to collect user data
• Exfil: Data exfiltration target unknown (likely custom API or webhook)
• Indicators: Free hosting on Vercel, domain name impersonating Booking.com, Booking.com logo
• Risk: HIGH - Risk of stolen credentials and personal data