EN ES PT

Phishing Analysis

Detailed analysis of captured phishing page

Back to Stats

Captura Visual

Screenshot of cartaocontinente-ptrsut.cfd

Informações de Detecção

http://cartaocontinente-ptrsut.cfd/pts
Detected Brand
Cartão Continente
Country
International
Confidence
100%
HTTP Status
200
Report ID
07e34e79-fb6…
Analyzed
2026-03-02 02:46
Final URL (after redirects)
https://cartaocontinente-ptrsut.cfd/pts

Hashes de Conteúdo (Similaridade HTML)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T144924030E529856E12EBD249AE046F8DC691B30FC749E6D6F4D0C29A2BC7DD1AC350CE
CONTENT ssdeep
192:h/sI4FK9/8u9NWpcWNEecph3DVcyCqDHUfi6wzUMVJOUceFsUk8kElkFkSgl7vRa:RxDDsiDUWiUk8kElkFkvJrp3c

Hashes Visuais (Similaridade de Captura)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
e5656d611b1b1b13
VISUAL aHash
00c3ffffe7ffffff
VISUAL dHash
96160e001686680a
VISUAL wHash
00c3c3e7c3ef00ef
VISUAL colorHash
06000010006
VISUAL cropResistant
9686080a160c2808,cacacac84929c8c4,4947169696868696,01083032b2300801

Análise de Código

Risk Score 100/100
Threat Level ALTO
⚠️ Phishing Confirmed
🎣 Credential Harvester 🎣 OTP Stealer 🎣 Card Stealer 🎣 Banking 🎣 Personal Info
WebSocket C2

🔬 Threat Analysis Report

• Ameaça: Phishing
• Alvo: Clientes Cartão Continente
• Método: Impersonação através de um website semelhante
• Exfil: Potencialmente via websocket ou formulários
• Indicadores: Domínio recente, formulários, ofuscação
• Risco: Alto

🔒 Obfuscation Detected

  • fromCharCode
  • unescape
  • base64_strings

🎯 Kit Endpoints

  • /wb089_pt_points_cartaocontinente_two_static/PortalCartaoContinente_Theme/img/MC_Logo_80x35.png?29707
  • resend

📊 Detalhamento da Pontuação de Risco

Total Risk Score
90/100

Contributing Factors

Recent Domain
The domain is only 1 day old.
Domain Unrelated to Brand
The domain 'cartaocontinente-ptrsut.cfd' does not belong to Cartão Continente.
Obfuscation Detected
JavaScript obfuscation is a common technique used by phishers to hide their malicious code.
Form Submission
The website has a form to collect information.

🔬 Análise Integral de Ameaças

Tipo de Ameaça
Banking Credential Harvester
Alvo
Cartão Continente users (International)
Método de Ataque
Brand impersonation + credential harvesting forms + real-time WebSocket exfiltration + obfuscated JavaScript
Canal de Exfiltração
WebSocket (1 endpoints)
Avaliação de Risco
CRITICAL - Automated credential harvesting with WebSocket (1 endpoints)

⚠️ Indicators of Compromise

  • Kit types: Credential Harvester, OTP Stealer, Card Stealer, Banking, Personal Info
  • 5 obfuscation techniques

🏢 Análise de Falsificação de Marca

Impersonated Brand
Cartão Continente
Fake Service
Cartão Continente login

⚔️ Metodologia de Ataque

Primary Method: Credential Harvesting

The phishing site is designed to collect a user's phone number.

Secondary Method: Social Engineering

The site uses Cartão Continente branding to trick users into entering their phone number.

🌐 Indicadores de Compromisso de Infraestrutura

Domain Information

Domain
cartaocontinente-ptrsut.cfd
Registered
2024-03-05
Registrar
Unknown
Status
ACTIVE

🤖 AI-Extracted Threat Intelligence

Similar Websites

Pages with identical visual appearance (based on perceptual hash)

Screenshot
Cartão Continente
https://cartaocontines-ptvr.cfd/pts
Abr 06, 2026
 Screenshot
Continente
https://cartaocontines-ptrz.cfd/pts
Abr 06, 2026
 Screenshot
Continente
https://cartaocontines-ptvs.cfd/pts
Abr 06, 2026
 Screenshot
Continente
https://cartaocontinens-ptrs.cfd/pts
Mar 31, 2026
 Screenshot
CARTÃO CONTINENTE
https://cartaocontinente-ptrsue.cfd/pts
Mar 02, 2026

Scan History for cartaocontinente-ptrsut.cfd

Found 1 other scan for this domain

😰
"Nunca pensei que aconteceria comigo"
Isso dizem os 2,3 milhões de vítimas a cada ano. Não espere para ser uma estatística.