Phishing Analysis

🔬 Threat Analysis Report

• Ameaça: Phishing
• Alvo: Usuários de carteiras de criptomoedas
• Método: Interação do usuário para 'conectar carteira'
• Exfil: Desconhecido, provavelmente roubar credenciais ou redirecionar para um serviço de fraude.
• Indicadores: Hospedagem gratuita, dados do mercado de criptomoedas, botão conectar carteira
• Risco: ALTO

🔒 Obfuscation Detected

• fromCharCode
• unescape
• unicode_escape

🎯 Kit Endpoints

• https://tailwindcss.com/docs/content-configuration
• https://tailwindcss.com/docs/using-with-preprocessors#nesting
• https://tailwindcss.com/docs/installation
• https://evilmartians.com/chronicles/postcss-8-plugin-migration`),m.env.LANG&&m.env.LANG.startsWith(
• https://tailwindcss.com`}),...e.nodes])},container:(()=
• https://mths.be/cssesc
• https://files.coinmarketcap.com/static/widget/coinMarquee.js
• https://3rdparty-apis.coinmarketcap.com/v1/cryptocurrency/widget
• https://cdn.tailwindcss.com
• https://tailwindcss.com/docs/content-configuration#pattern-recommendations
• https://twitter.com/browserslist
• https://s2.coinmarketcap.com/static/img/coins/32x32/
• https://tailwindcss.com/docs/content-configuration#safelisting-classes
• https://3rdparty-apis.coinmarketcap.com/v1/cryptocurrency/top
• https://tailwindcss.com/docs/content-configuration#discarding-classes
• https://tailwindcss.com/docs/upgrade-guide#remove-dark-mode-configuration
• https://www.w3ctech.com/topic/2226`));let
• https://coinmarketcap.com/currencies/
• https://tailwindcss.com/docs/upgrade-guide#prefix-cannot-be-a-function
• https://tailwindcss.com/docs/upgrade-guide#configure-content-sources
• https://coinmarketcap.com/
• https://tailwindcss.com/docs/upgrade-guide#replace-variants-with-layer

🦠 Malicious Files