Phishing Analysis

🔐 Credential Harvesting Forms

🔒 Obfuscation Detected

• atob
• eval
• fromCharCode
• unescape
• document.write
• hex_escape
• unicode_escape
• base64_strings

🎯 Kit Endpoints

• https://api.injuries.to/catalog/5319917561/Oldschool-Jump
• https://api.injuries.to/catalog/5319909330/Oldschool-Walk
• https://api.injuries.to/catalog/5319931619/Oldschool-Climb
• https://api.injuries.to/catalog/71738664/MCR-Danger-Days-Party-Poison
• https://api.injuries.to/catalog/17877340/Beautiful-Brown-Hair-for-Beautiful-People
• https://api.injuries.to/catalog/30200246/ROBLOX-Conference-Lanyard
• https://www.roblox.com/catalog?CatalogContext=1&Keyword=
• https://api.injuries.to/catalog/43396699/Tuxedo-Pants
• /info/blog?locale=en_us
• /login?returnUrl=
• https://www.roblox.com/catalog
• https://api.injuries.to/catalog/5319927054/Oldschool-Swim
• https://api.injuries.to/catalog/1235488/Clockworks-Headphones
• https://api.injuries.to/catalog/68267768/8-Bit-Shades
• https://api.injuries.to/catalog/15554865414/Shiny-Teeth-Mood
• https://api.injuries.to/catalog/15554865353/Shiny-Teeth-Head
• https://api.injuries.to/catalog/5319914476/Oldschool-Fall

📡 API Calls Detected

• POST
• get
• https://apis.
• https://ro.blox.com/Ebh5?
• GET
• https://help.roblox.com/hc/articles/30428367965460

📤 Form Action Targets

• /search

Domain Information

Hosting Information