SafeMode - Analysis: coded404-see.mdbgo.io

EN ES PT

Back to Stats

Captura Visual

Screenshot of coded404-see.mdbgo.io

Informações de Detecção

https://coded404-see.mdbgo.io/

Detected Brand

Alibaba

Country

International

Confiança

95%

HTTP Status

200

Report ID

2557ba63-706…

Analyzed

2026-02-22 15:07

Hashes de Conteúdo (Similaridade HTML)

Used to detect similar phishing pages based on HTML content

Algorithm	Hash Value
CONTENT TLSH	T18BA2A3B0A054A37D098957DAFB28969F5F3E005DB6814D9C80DC4FD58DF34A8CE51CAE
CONTENT ssdeep	384:CdoKxFsHTJ8IwOzeVGavZ5gR3Zt2wD08aY+VoUehX:CdoW4TmIw8eVlvZGlZBic

Hashes Visuais (Similaridade de Captura)

Used to detect visually similar phishing pages based on screenshots

Algorithm	Hash Value
VISUAL pHash	9216e9ed498dc965
VISUAL aHash	ff04040c00ffffff
VISUAL dHash	6ccccc7cb80b0061
VISUAL wHash	1f04040400ffffff
VISUAL colorHash	06000008006
VISUAL cropResistant	0000006060600020,b4bcb835bdb63630,070f094317146161,2c8cccec5c3c300b

Análise de Código

Risk Score 53/100

Nível de Ameaça ALTO

⚠️ Phishing Confirmed

🎣 Credential Harvester

🔬 Threat Analysis Report

• Ameaça: Phishing
• Alvo: Usuários do Alibaba
• Método: Falsificação através de uma página de login falsa.
• Exfil: Desconhecido (provavelmente credenciais)
• Indicadores: URL suspeita, envio de formulário e ofuscação de código.
• Risco: Alto

🔒 Obfuscation Detected

fromCharCode

📊 Detalhamento da Pontuação de Risco

Total Risk Score

90/100

Contributing Factors

Suspicious Domain

The domain is not related to Alibaba and is likely fraudulent.

Form Submission

Presence of a login form suggests credential harvesting.

Obfuscation

Code obfuscation attempts to hide malicious behavior.

🔬 Análise Integral de Ameaças

Tipo de Ameaça

Credential Harvesting Kit

Alvo

Alibaba users (International)

Método de Ataque

Brand impersonation + credential harvesting forms + obfuscated JavaScript

Canal de Exfiltração

Form submission (backend endpoint not detected - likely JavaScript-based)

Avaliação de Risco

MEDIUM - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)

⚠️ Indicators of Compromise

Kit types: Credential Harvester
2 obfuscation techniques

🏢 Análise de Falsificação de Marca

Impersonated Brand

Alibaba

Official Website

https://www.alibaba.com/

Fake Service

Alibaba Login

Fraudulent Claims

⚔️ Metodologia de Ataque

Primary Method: Credential Harvesting

The attacker attempts to steal user credentials by mimicking the Alibaba login page on a deceptive domain.

Secondary Method: Social Engineering

The page uses Alibaba branding to lure users into entering their login details.

🌐 Indicadores de Compromisso de Infraestrutura

Domain Information

Domínio

coded404-see.mdbgo.io

Registered

2020-10-19

Registrar

Unknown

Estado

Active

🤖 AI-Extracted Threat Intelligence

Similar Websites

Pages with identical visual appearance (based on perceptual hash)

Screenshot

https://agrotrade.co.in/g/ddfghhj/gffg/alibaba/

Screenshot

https://u60559p57805.web0105.zxcs-klant.nl/goat/alibaba

Screenshot

https://artmedal.ir/ggyg/alibaba/index.html

Screenshot

http://artmedal.ir/ggyg/alibaba/

Screenshot

http://nodu1718.odns.fr/sjssjdj/alibaba

Scan History for coded404-see.mdbgo.io

Found 5 other scans for this domain

http://coded404-see.mdbgo.io/ Alibaba Fev 10, 2026 00:17

https://coded404-see.mdbgo.io Alibaba Jan 02, 2026 03:09

http://coded404-see.mdbgo.io Alibaba.com Dez 31, 2025 22:27

https://coded404-see.mdbgo.io/ Alibaba.com Dez 31, 2025 19:08

http://coded404-see.mdbgo.io Alibaba Dez 21, 2025 11:22

😰

"Nunca pensei que aconteceria comigo"

Isso dizem os 2,3 milhões de vítimas a cada ano. Não espere para ser uma estatística.