Phishing Analysis: Spotify

EN ES PT

Back to Stats

Captura Visual

Informações de Detecção

https://spotify-rsg.netlify.app/

Detected Brand

Spotify

Country

International

Confidence

95%

HTTP Status

200

Report ID

bc2567e9-325…

Analyzed

2026-03-04 00:18

Hashes de Conteúdo (Similaridade HTML)

Used to detect similar phishing pages based on HTML content

Algorithm	Hash Value
CONTENT TLSH	T1F5A145724006DE2F4687C2E0A3746B2FB3D6D2C1DBA70B0587F593D82EC6C86EC1A154
CONTENT ssdeep	96:TaqGxcq27wgWcYUQdxnuPTwdxnuw1dxnuqs84dxnuh1zh:6NUmhuPTGhuwvhuqZuhuh1h

Hashes Visuais (Similaridade de Captura)

Used to detect visually similar phishing pages based on screenshots

Algorithm	Hash Value
VISUAL pHash	9fda8f6425608b9a
VISUAL aHash	213c3c0000000012
VISUAL dHash	4f7979a6b0a0a162
VISUAL wHash	bfbf3f130000403f
VISUAL colorHash	31600050000
VISUAL cropResistant	8905313e07c7c6c6,b16d44d417dbe4cd,4f7979a6b0a0a162

Análise de Código

Threat Level ALTO

⚠️ Phishing Confirmed

🔬 Threat Analysis Report

• Ameaça: Impersonação
• Alvo: Usuários do Spotify
• Método: Imitando a interface do Spotify em um site de hospedagem gratuita.
• Exfil: Desconhecido, mas provavelmente roubo de credenciais, possivelmente tomada de conta.
• Indicadores: Hospedagem Netlify, logotipo do Spotify, interface semelhante.
• Risco: Alto

📊 Detalhamento da Pontuação de Risco

Total Risk Score

90/100

Contributing Factors

Free Hosting

The site uses a free hosting provider, a common indicator of phishing.

Brand Impersonation

The site attempts to replicate the Spotify interface and branding, which increases the likelihood of a phishing attack.

🔬 Análise Integral de Ameaças

Tipo de Ameaça

Spotify Phishing Landing Page

Alvo

Spotify users (International)

Método de Ataque

Brand impersonation

Canal de Exfiltração

Form submission (backend endpoint not detected - likely JavaScript-based)

Avaliação de Risco

LOW - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)

🏢 Análise de Falsificação de Marca

Impersonated Brand

Spotify

Official Website

https://www.spotify.com/

Fake Service

Spotify Playlists

⚔️ Metodologia de Ataque

Primary Method: Credential Harvesting

The attacker likely aims to trick users into entering their Spotify login credentials on a fake login page (if it exists).

🌐 Indicadores de Compromisso de Infraestrutura

Domain Information

Domain

spotify-rsg.netlify.app

Registered

None

Registrar

None

Status

None

🤖 AI-Extracted Threat Intelligence

Similar Websites

Pages with identical visual appearance (based on perceptual hash)

Spotify

http://spotify-rsg.netlify.app/

Abr 06, 2026

Scan History for spotify-rsg.netlify.app

Found 1 other scan for this domain

http://spotify-rsg.netlify.app/ Spotify Abr 06, 2026 16:42

😰

"Nunca pensei que aconteceria comigo"

Isso dizem os 2,3 milhões de vítimas a cada ano. Não espere para ser uma estatística.