SafeMode - Analysis: 00e62466-77ff-4510-97e6-d1a5a7129513-00-16fdii9g7h452.spock.replit.dev

Captura Visual

Screenshot of 00e62466-77ff-4510-97e6-d1a5a7129513-00-16fdii9g7h452.spock.replit.dev

Informações de Detecção

https://00e62466-77ff-4510-97e6-d1a5a7129513-00-16fdii9g7h452.spock.replit.dev/

Detected Brand

Banco BHD

Country

Unknown

Confiança

100%

HTTP Status

200

Report ID

03cca8fa-03c…

Analyzed

2026-05-05 23:27

Hashes de Conteúdo (Similaridade HTML)

Used to detect similar phishing pages based on HTML content

Algorithm	Hash Value
CONTENT TLSH	T19121D05040439CB7919392E847EECA152693C752EB033A4286E8375E1DD7E08CE2B554
CONTENT ssdeep	24:hWkpGGjKj5Hk3t99KQ1fpN9yK3SGFNUKpAa:7fV999f1BHjiGXDpl

Hashes Visuais (Similaridade de Captura)

Used to detect visually similar phishing pages based on screenshots

Algorithm	Hash Value
VISUAL pHash	9da332da4d1db232
VISUAL aHash	ffff1f1a18180000
VISUAL dHash	fc5f7fb2b2b13cb8
VISUAL wHash	ffffff3a18180000
VISUAL colorHash	03e08000000
VISUAL cropResistant	7cfd5f7db2b2b2b1,7db2b2b3b13c30c8

Análise de Código

Risk Score 50/100

Nível de Ameaça ALTO

⚠️ Phishing Confirmed

🎣 Credential Harvester

📊 Detalhamento da Pontuação de Risco

Total Risk Score

70/100

Contributing Factors

Active Phishing Kit

Detected kit types: Credential Harvester

Credential Harvesting

Credential harvesting detected with 1 form(s) capturing sensitive data

🔬 Análise Integral de Ameaças

Tipo de Ameaça

Credential Harvesting Kit

Alvo

Banco BHD users

Método de Ataque

credential harvesting forms

Canal de Exfiltração

Form submission (backend endpoint not detected - likely JavaScript-based)

Avaliação de Risco

MEDIUM - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)

⚠️ Indicators of Compromise

Kit types: Credential Harvester

🏢 Análise de Falsificação de Marca

Impersonated Brand

Banco BHD

Official Website

N/A

Fake Service

Credential harvesting service

⚔️ Metodologia de Ataque

Primary Method: Credential Harvesting

Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.

Secondary Method: Standard Phishing Techniques

Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.