SafeMode - Analysis: 138-68-183-9.cprapid.com

EN ES PT

Back to Stats

Captura Visual

No screenshot available

Informações de Detecção

https://138-68-183-9.cprapid.com/de/update.php

Detected Brand

DPD

Country

International

Confidence

100%

HTTP Status

200

Report ID

6277355f-949…

Analyzed

2025-12-31 23:21

Hashes de Conteúdo (Similaridade HTML)

Used to detect similar phishing pages based on HTML content

Algorithm	Hash Value
CONTENT TLSH	T1A2B2027094B5B63F009F7391A7386709A3D39783CB520BE567F8936D4B8AE84DC23169
CONTENT ssdeep	192:bixLoxwz77qKHv/ySchJrVUmZGko5XTCReWyRMOsUFf9kIT/JO:mx8xw7pvKpJrVUIGkc+TxFUH/JO

Hashes Visuais (Similaridade de Captura)

Used to detect visually similar phishing pages based on screenshots

Algorithm	Hash Value
VISUAL pHash	bcc3c33c83693cc3
VISUAL aHash	ffffffc3df8181ff
VISUAL dHash	39000027292b1342
VISUAL wHash	8fffff8181818189
VISUAL colorHash	07000000007
VISUAL cropResistant	39000027292b1342,0000db6464649b24

Análise de Código

Risk Score 90/100

Threat Level BAJO

🎣 Credential Harvester 🎣 Banking

🔬 Threat Analysis Report

• Ameaça: Tentativa de golpe de entrega de pacote.
• Alvo: Indivíduos aguardando entregas de pacotes da DPD.
• Método: Tenta fazer com que o usuário agende uma nova entrega.
• Exfil: Provavelmente obterá PII.
• Indicadores: A imagem tem um URL de rastreamento DPD válido.
• Risco: BAIXO - Possível golpe, mas não explicitamente malicioso.

🔐 Credential Harvesting Forms

🔒 Obfuscation Detected

atob
eval
fromCharCode
unescape

🎯 Kit Endpoints

./app/wp-content/themes/DPD_Login/css/styles.min5b21.css?ver=6.0.2

📡 API Calls Detected

https://whos.amung.us/stats/
POST
GET

📤 Form Action Targets

date.php
#

Similar Websites

Pages with identical visual appearance (based on perceptual hash)

Screenshot

https://161-35-72-148.cprapid.com/dpd/update.php?vqc2lgxt4kr...

Screenshot

https://212-227-48-175.cprapid.com/de/update.php

Screenshot

https://138-68-183-9.cprapid.com/de/update.php

Screenshot

https://217-160-164-192.cprapid.com/de/update.php?g1hdiel1pc...

Screenshot

https://69-164-193-72.cprapid.com/de/update.php

Scan History for 138-68-183-9.cprapid.com

Found 6 other scans for this domain

http://138-68-183-9.cprapid.com ? Mar 15, 2026 10:34

https://138-68-183-9.cprapid.com/ ? Fev 24, 2026 22:12

https://138-68-183-9.cprapid.com/de/update.php DPD Jan 15, 2026 06:08

https://138-68-183-9.cprapid.com/de/update.php DPD Dez 31, 2025 06:47

https://138-68-183-9.cprapid.com/de/update.php DPD Dez 26, 2025 06:48

https://138-68-183-9.cprapid.com/de/update.php Unknown Dez 24, 2025 18:22

😰

"Nunca pensei que aconteceria comigo"

Isso dizem os 2,3 milhões de vítimas a cada ano. Não espere para ser uma estatística.