SafeMode - Analysis: 126qiyeyou.com

Captura Visual

Informações de Detecção

http://126qiyeyou.com/login

Detected Brand

NetEase (163.com)

Country

China

Confiança

95%

HTTP Status

200

Report ID

22325769-a12…

Analyzed

2025-12-19 21:05

Final URL (after redirects)

http://126qiyeyou.com/login/

Hashes de Conteúdo (Similaridade HTML)

Used to detect similar phishing pages based on HTML content

Algorithm	Hash Value
CONTENT TLSH	T119452A60FFC0781A12E70A37313B528DE0A71933F944C86AD124FFAC5E6665DE666D32
CONTENT ssdeep	24576:1stGD04fWG0RdGUNQin0ybkZhd1B6XXCFK2STS81cts6WPNWuUiG6cMin5LCT1GH:KtGD04f50RdGUKintbkZhd1B6XXCFK2T

Hashes Visuais (Similaridade de Captura)

Used to detect visually similar phishing pages based on screenshots

Algorithm	Hash Value
VISUAL pHash	9a1be77ae1659812
VISUAL aHash	00000c028f9fffff
VISUAL dHash	42383816393c64cd
VISUAL wHash	00000c0a8fdfffff
VISUAL colorHash	06007000000
VISUAL cropResistant	42383816393c64cd

Análise de Código

Risk Score 70/100

Nível de Ameaça ALTO

🔬 Threat Analysis Report

• Threat: QR code phishing impersonating NetEase (163.com)
• Target: NetEase (163.com) users
• Method: Tricking users into scanning a malicious QR code that could lead to credential theft or malware installation.
• Exfil: Unknown, likely depends on the payload of the QR code.
• Indicators: Domain name mismatch, use of a QR code as the primary login method, impersonation of NetEase.
• Risk: HIGH - Potential for credential theft and malware installation upon scanning the QR code.