EN ES PT

Phishing Analysis

Detailed analysis of captured phishing page

Back to Stats

Captura Visual

Screenshot of 808qianbaoxiazaigw.com.cn

Informações de Detecção

https://808qianbaoxiazaigw.com.cn/
Detected Brand
808 Wallet (808钱包)
Country
Unknown
Confiança
95%
HTTP Status
200
Report ID
5530b9f4-0d4…
Analyzed
2026-05-23 10:16

Hashes de Conteúdo (Similaridade HTML)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T157F2DB70A0A6AE7F10D7C2E5A7319B4F72D1D34ACA67071A97F8A35E2FC2C94CD51188
CONTENT ssdeep
384:O5doNYu3r7jf14tbESTI/FO5A3oBHGVDLqe4TipR:rqub7jf14tIWA+GdqeMiP

Hashes Visuais (Similaridade de Captura)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
9032bac56d6dc53a
VISUAL aHash
00040400007effff
VISUAL dHash
8cc88c8696d6d400
VISUAL wHash
004c44006a7fffff
VISUAL colorHash
1b0000006c0
VISUAL cropResistant
f6b6ae2652d0d6ce,b2929292369292b2,8542554592c8ccc8,86c8889c2286d6d6

Análise de Código

Risk Score 15/100
Nível de Ameaça ALTO
⚠️ Phishing Confirmed

🔒 Obfuscation Detected

  • eval
  • unescape
  • hex_escape
  • unicode_escape
  • js_packer
  • base64_strings

📊 Detalhamento da Pontuação de Risco

Total Risk Score
40/100

Contributing Factors

Code Obfuscation
JavaScript code obfuscated using 1159 technique(s) to evade detection

🔬 Análise Integral de Ameaças

Tipo de Ameaça
808 Wallet (808钱包) Phishing Landing Page
Alvo
808 Wallet (808钱包) users
Método de Ataque
obfuscated JavaScript
Canal de Exfiltração
Form submission (backend endpoint not detected - likely JavaScript-based)
Avaliação de Risco
LOW - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)

⚠️ Indicators of Compromise

  • 1159 obfuscation techniques

🏢 Análise de Falsificação de Marca

Impersonated Brand
808 Wallet (808钱包)
Official Website
N/A
Fake Service
Credential harvesting service

⚔️ Metodologia de Ataque

Primary Method: SEO Poisoning Landing Page

Fake 808 Wallet (808钱包) page designed to appear in search results and trick users into visiting. May redirect to credential harvesting pages, malware downloads, or serve as a trust-building step before requesting sensitive information.

Secondary Method: JavaScript Obfuscation

Malicious code is obfuscated using 1159 techniques to evade detection by security scanners and make reverse engineering more difficult.

🌐 Indicadores de Compromisso de Infraestrutura

Domain Information

Domínio
808qianbaoxiazaigw.com.cn
Registered
2026-03-24 14:47:43+00:00
Registrar
Web Commerce Communications Limited
Estado
Active (59 days old)

Hosting Information

Provider
Web Commerce Communications Limited
ASN

🤖 AI-Extracted Threat Intelligence

😰
"Nunca pensei que aconteceria comigo"
Isso dizem os 2,3 milhões de vítimas a cada ano. Não espere para ser uma estatística.