SafeMode - Analysis: www.advanced-documents.com

EN ES PT

Back to Stats

Captura Visual

Screenshot of www.advanced-documents.com

Informações de Detecção

https://www.advanced-documents.com/?urid=gSauE1SMeJGu05pM5sKYA1DwcnyYVDaqwOqUm4YVHdcUZAvdElV7pGh92knY0CDdUajQZUfyASZYfAu0dv6MXylzgfjNAG1QSCPc_BTFd7AAkVuE6RG4RKumSj5w-k4g_TGe-rQ4blPqff7A&rg=WEU

Detected Brand

Microsoft

Country

International

Confiança

95%

HTTP Status

200

Report ID

1395c7b1-de8…

Analyzed

2026-03-05 12:30

Hashes de Conteúdo (Similaridade HTML)

Used to detect similar phishing pages based on HTML content

Algorithm	Hash Value
CONTENT TLSH	T143C16130E4148D378343E6E1B7A59B0A72E8C34BCA4345086AF8A31E1FD7ED5CE261A1
CONTENT ssdeep	96:x1RrAPn8G36sgCD6sTUxSNgEj6sTzX1p6sIGUJvySOzrG4vSAKyFSTfLcRHUnhLz:ul9D+cVPpYgafwHApfb

Hashes Visuais (Similaridade de Captura)

Used to detect visually similar phishing pages based on screenshots

Algorithm	Hash Value
VISUAL pHash	989973674c5932dc
VISUAL aHash	ffff3e1818000000
VISUAL dHash	f0f8f0b2b2f1dab0
VISUAL wHash	ffffff1c180c0800
VISUAL colorHash	1bc00010000
VISUAL cropResistant	e0e0f0f0c0e0c0c1,f0f8f0b2b2f1dab0

Análise de Código

Risk Score 56/100

Nível de Ameaça ALTO

⚠️ Phishing Confirmed

🎣 Credential Harvester

🔬 Threat Analysis Report

• Ameaça: Falsificação de identidade
• Alvo: Usuários do Microsoft
• Método: Phishing através de uma página de login falsa.
• Exfil: Potencialmente credenciais do usuário.
• Indicadores: Domínio não relacionado, formulários e personificação da marca.
• Risco: ALTO

🔒 Obfuscation Detected

fromCharCode
base64_strings

📡 API Calls Detected

POST

📊 Detalhamento da Pontuação de Risco

Total Risk Score

90/100

Contributing Factors

Domain mismatch

The domain name doesn't belong to the brand being impersonated.

Impersonation of login page

The page tries to look like a legitimate Microsoft login page.

Form present collecting credentials

A form is present, designed to harvest sensitive user credentials (email/phone/skype)

🔬 Análise Integral de Ameaças

Tipo de Ameaça

Credential Harvesting Kit

Alvo

Microsoft users (International)

Método de Ataque

Brand impersonation + credential harvesting forms + obfuscated JavaScript

Canal de Exfiltração

Form submission (backend endpoint not detected - likely JavaScript-based)

Avaliação de Risco

MEDIUM - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)

⚠️ Indicators of Compromise

Kit types: Credential Harvester
6 obfuscation techniques

🏢 Análise de Falsificação de Marca

Impersonated Brand

Microsoft

Official Website

microsoft.com

Fake Service

Microsoft account login

⚔️ Metodologia de Ataque

Primary Method: Credential Harvesting

The attacker aims to steal user credentials by creating a fake login page that mirrors Microsoft's.

🌐 Indicadores de Compromisso de Infraestrutura

Domain Information

Domínio

advanced-documents.com

Registered

None

Registrar

None

Estado

None

🤖 AI-Extracted Threat Intelligence

Similar Websites

Pages with identical visual appearance (based on perceptual hash)

Screenshot

https://www.e-owa.com/?urid=AXLMLIm-StGu0wLXgY4yicAmrs5WHlDP...

Screenshot

https://www.it-communications.com/?urid=QekUmAG1SKGCkVrFPcR7...

Screenshot

http://advanced-documents.com/?urid=gJPHLRUoTQHeEqGRObxgx5Ai...

Screenshot

http://docusine.com/?urid=wZODP2jiU2CKE9V644_RWWwyH20A36rXWm...

Screenshot

https://www.emesssages.com/?urid=gHIkX-p0oe9ekh7aWh0Nmrw4AkH...

Scan History for www.advanced-documents.com

Found 3 other scans for this domain

https://www.advanced-documents.com/?urid=QC2l24RF4... Microsoft Mar 05, 2026 12:33

https://www.advanced-documents.com/?urid=gonC5zd9j... Microsoft Mar 05, 2026 12:28

https://www.advanced-documents.com/?urid=gJPHLRUoT... Microsoft Mar 05, 2026 12:27

😰

"Nunca pensei que aconteceria comigo"

Isso dizem os 2,3 milhões de vítimas a cada ano. Não espere para ser uma estatística.