SafeMode - Analysis: absltiks-shop.com

Captura Visual

No screenshot available

Informações de Detecção

https://absltiks-shop.com/

Detected Brand

TikTok

Country

International

Confiança

100%

HTTP Status

200

Report ID

2bf0c0f6-2ea…

Analyzed

2026-01-26 23:58

Final URL (after redirects)

https://absltiks-shop.com/#/home

Hashes de Conteúdo (Similaridade HTML)

Used to detect similar phishing pages based on HTML content

Algorithm	Hash Value
CONTENT TLSH	T1AEC2207C20EC15B7903B8CCAB824395DA871934BCF26C8976AAD53D63FD2811B550E7B
CONTENT ssdeep	384:DybgbzkDBuDBP8pYy5E2zu7TVBq9XqLTV5tDUTghoVupJVCzN:DybgbzT8pYytIqqLTV5tD+gqAGN

Hashes Visuais (Similaridade de Captura)

Used to detect visually similar phishing pages based on screenshots

Algorithm	Hash Value
VISUAL pHash	9616bb391cb97911
VISUAL aHash	0e060e1600ffffff
VISUAL dHash	6cecece46495080e
VISUAL wHash	0c06041404ffffff
VISUAL colorHash	16600000002
VISUAL cropResistant	9f9b9f9fadedcfc6,9e0c000c0f370c4c,7c6cececf4646471

Análise de Código

Risk Score 82/100

Nível de Ameaça BAJO

🎣 Credential Harvester 🎣 OTP Stealer 🎣 Banking 🎣 Personal Info

🔬 Threat Analysis Report

• Ameaça: Possível abuso de marca / loja não autorizada.
• Alvo: Usuários do TikTok.
• Método: Possivelmente uma loja TikTok de terceiros não verificada.
• Exfil: Nenhuma exfiltração de dados aparente.
• Indicadores: Domínio não oficial, mas sem sinais claros de phishing.
• Risco: BAIXO - Possível deturpação da marca, mas sem ameaça direta.

📡 API Calls Detected

https://xf.xfgfdgre.shop/XP26hG

📊 Detalhamento da Pontuação de Risco

Total Risk Score

100/100

Contributing Factors

Active Phishing Kit

Detected Credential Harvester and OTP Stealer kits targeting TikTok users for account takeover.

Brand Impersonation

Domain absltiks-shop.com impersonates TikTok with high visual similarity and fake service claims.

Lack of Detection Evasion

No obfuscation techniques, Telegram bots, Discord webhooks, or WebSocket URLs detected, indicating low operational security.

High-Risk Target

Targeting TikTok, a high-value platform for account takeover and financial fraud.

🔬 Análise Integral de Ameaças

Tipo de Ameaça

Banking Credential Harvester

Alvo

TikTok users (International)

Método de Ataque

Phishing webpage

Canal de Exfiltração

Unknown

Avaliação de Risco

CRITICAL - Automated credential harvesting with Unknown

⚠️ Indicators of Compromise

Kit types: Credential Harvester, OTP Stealer, Banking, Personal Info

🏢 Análise de Falsificação de Marca

Impersonated Brand

TikTok

Official Website

https://www.tiktok.com

Fake Service

TikTok Store or promotional offer

⚔️ Metodologia de Ataque

Primary Method: Credential Harvesting

The phishing kit captures TikTok login credentials via a fake login portal. Submitted credentials are likely exfiltrated to an attacker-controlled server for immediate account takeover.

Secondary Method: OTP Stealer

If multi-factor authentication (MFA) is enabled, the kit may prompt victims to enter OTP codes, which are intercepted and relayed to the attacker in real-time.

🌐 Indicadores de Compromisso de Infraestrutura

Domain Information

Domínio

absltiks-shop.com

Registered

2025-10-21 13:13:53+00:00

Registrar

Amazon Registrar, Inc.

Estado

Active (97 days old)

📊 Diagrama de Fluxo de Ataque

┌──────────────────────────────────────────────────────────┐
│ 1. VICTIM RECEIVES PHISHING LURE                          │
│    - Fake TikTok email/notification with malicious link   │
└────────────────────┬─────────────────────────────────────┘
                     │
                     ▼
┌──────────────────────────────────────────────────────────┐
│ 2. VICTIM VISITS FAKE TIKTOK PAGE                        │
│    - Phishing site mimics legitimate TikTok login        │
└────────────────────┬─────────────────────────────────────┘
                     │
                     ▼
┌──────────────────────────────────────────────────────────┐
│ 3. CREDENTIAL INPUT                                      │
│    - Victim enters Banking/login credentials             │
└────────────────────┬─────────────────────────────────────┘
                     │
                     ▼
┌──────────────────────────────────────────────────────────┐
│ 4. DATA CAPTURE & EXFILTRATION                           │
│    - Credentials sent via HTTP POST (form submission)    │
└──────────────────────────────────────────────────────────┘

🤖 AI-Extracted Threat Intelligence

📊 Attack Flow

┌──────────────────────────────────────────────────────────┐
│ 1. VICTIM RECEIVES PHISHING LURE                          │
│    - Fake TikTok email/notification with malicious link   │
└────────────────────┬─────────────────────────────────────┘
                     │
                     ▼
┌──────────────────────────────────────────────────────────┐
│ 2. VICTIM VISITS FAKE TIKTOK PAGE                        │
│    - Phishing site mimics legitimate TikTok login        │
└────────────────────┬─────────────────────────────────────┘
                     │
                     ▼
┌──────────────────────────────────────────────────────────┐
│ 3. CREDENTIAL INPUT                                      │
│    - Victim enters Banking/login credentials             │
└────────────────────┬─────────────────────────────────────┘
                     │
                     ▼
┌──────────────────────────────────────────────────────────┐
│ 4. DATA CAPTURE & EXFILTRATION                           │
│    - Credentials sent via HTTP POST (form submission)    │
└──────────────────────────────────────────────────────────┘

Similar Websites

Pages with identical visual appearance (based on perceptual hash)

TikTok

http://www.tkshops-tj.com/

Mai 30, 2026

TikTok

https://www.dont-kshop.com/

Dez 27, 2025