SafeMode - Analysis: info.remote-otp.com

EN ES PT

Back to Stats

Captura Visual

Screenshot of info.remote-otp.com

Informações de Detecção

https://info.remote-otp.com/homepage/corporate-offer?rid=OW86WLL

Detected Brand

Microsoft

Country

International

Confiança

95%

HTTP Status

200

Report ID

3a40ee21-bb0…

Analyzed

2026-03-17 23:39

Hashes de Conteúdo (Similaridade HTML)

Used to detect similar phishing pages based on HTML content

Algorithm	Hash Value
CONTENT TLSH	T12641F1A050582A674382D7D4BA93F60A3785C391C3025F064BF49BCD1FD7EDDCC5A252
CONTENT ssdeep	48:TWOGU/cIgwHt/bB5jIe8RsgJZYgzdRIGU/cIgwXhuCfR74:TW4dgwHt/bjAYgWdgwXhA

Hashes Visuais (Similaridade de Captura)

Used to detect visually similar phishing pages based on screenshots

Algorithm	Hash Value
VISUAL pHash	9e49f326cc99c866
VISUAL aHash	18001818151f1fbf
VISUAL dHash	7161713325717979
VISUAL wHash	39181818171f1fff
VISUAL colorHash	07000000180
VISUAL cropResistant	7161713325717979

Análise de Código

Risk Score 50/100

Nível de Ameaça ALTO

⚠️ Phishing Confirmed

🎣 Credential Harvester

🔬 Threat Analysis Report

• Ameaça: Phishing
• Alvo: Usuários do Microsoft
• Método: Coleta de credenciais
• Exfil: Desconhecido
• Indicadores: Incompatibilidade de domínio, logotipo da Microsoft usado
• Risco: Alto

📊 Detalhamento da Pontuação de Risco

Total Risk Score

90/100

Contributing Factors

Domain Mismatch

The domain 'info.remote-otp.com' does not belong to Microsoft.

Impersonation

The site mimics a Microsoft login page to steal credentials.

Form Submission

Javascript form submission detected, indicating potential data exfiltration

🔬 Análise Integral de Ameaças

Tipo de Ameaça

Credential Harvesting Kit

Alvo

Microsoft users (International)

Método de Ataque

Brand impersonation + credential harvesting forms

Canal de Exfiltração

Form submission (backend endpoint not detected - likely JavaScript-based)

Avaliação de Risco

MEDIUM - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)

⚠️ Indicators of Compromise

Kit types: Credential Harvester

🏢 Análise de Falsificação de Marca

Impersonated Brand

Microsoft

Official Website

https://www.microsoft.com

Fake Service

Microsoft account login

⚔️ Metodologia de Ataque

Primary Method: Credential Harvesting

The attacker uses a fake login page to trick users into entering their Microsoft credentials (email/phone and password).

Secondary Method: Data Exfiltration

The stolen credentials will likely be used to gain access to the victim's Microsoft account.

🌐 Indicadores de Compromisso de Infraestrutura

Domain Information

Domínio

info.remote-otp.com

Registered

2021-10-05

Registrar

None

Estado

Active

🤖 AI-Extracted Threat Intelligence

Similar Websites

Pages with identical visual appearance (based on perceptual hash)

Screenshot

https://bill.fast-shipping.it/?rid=ISKNv29

Screenshot

https://cdn.gosafemode.com/screenshots/77e112a8e82e.png

Screenshot

https://account.remote-otp.com/recoveryidprofile?rid=pmWV64y

Screenshot

https://hr.agenziaesattoriale.it/?rid=kfu5k8f

Screenshot

https://account.remote-otp.com/synchronization?rid=At9YVox

Scan History for info.remote-otp.com

Found 8 other scans for this domain

https://info.remote-otp.com/homepage/corporate-off... ?

https://info.remote-otp.com/homepage/corporate-off... Eni Jun 04, 2026 10:12

https://info.remote-otp.com/homepage/corporate-off... Microsoft Mar 29, 2026 05:01

https://info.remote-otp.com/sharingpoint.com/downl... Microsoft Mar 20, 2026 17:14

https://info.remote-otp.com/?rid=KoBEOYT ? Dez 28, 2025 09:59

https://info.remote-otp.com/?rid=g6zpv6u ? Dez 28, 2025 09:59

https://info.remote-otp.com/?rid=G6zpV6u ? Dez 28, 2025 09:59

https://info.remote-otp.com/?rid=yljnqx4 ? Dez 28, 2025 09:59

😰

"Nunca pensei que aconteceria comigo"

Isso dizem os 2,3 milhões de vítimas a cada ano. Não espere para ser uma estatística.