SafeMode - Analysis: amex-puntos.com

EN ES PT

Back to Stats

Captura Visual

Informações de Detecção

https://amex-puntos.com/pages/phone.php

Detected Brand

American Express (Amex)

Country

International

Confiança

95%

HTTP Status

200

Report ID

cca950b9-703…

Analyzed

2026-03-17 15:37

Hashes de Conteúdo (Similaridade HTML)

Used to detect similar phishing pages based on HTML content

Algorithm	Hash Value
CONTENT TLSH	T1B5411071A0D2A53B41E3E2C0E7A6BF3732C08286C582162686F887AE8FD9D04ED1A454
CONTENT ssdeep	48:/upoKBq6SJSJSRf5GB/vmZ6va46C+fBjU97Av:/uDw6SJSJSRwQZ6va46C+Jv

Hashes Visuais (Similaridade de Captura)

Used to detect visually similar phishing pages based on screenshots

Algorithm	Hash Value
VISUAL pHash	b38f996636cc8c26
VISUAL aHash	ffe7ffe7e7e7ffcf
VISUAL dHash	550c184d4d0c101c
VISUAL wHash	00e7e7e7e0e0c0c0
VISUAL colorHash	070000001c0
VISUAL cropResistant	550c184d4d0c101c,00006c3030200400,25424ed159544849

Análise de Código

Risk Score 50/100

Nível de Ameaça ALTO

⚠️ Phishing Confirmed

🎣 Credential Harvester

🔬 Threat Analysis Report

• Ameaça: Phishing
• Alvo: Clientes da American Express
• Método: Imitação com um site falso
• Exfil: ../actions/phone-action.php
• Indicadores: Domínio recente, formulários e pedido de número de telefone.
• Risco: Alto

🔐 Credential Harvesting Forms

📤 Form Action Targets

../actions/phone-action.php

📊 Detalhamento da Pontuação de Risco

Total Risk Score

90/100

Contributing Factors

Recent Domain

The domain is only a few days old.

Impersonation of Brand

The site uses the branding of American Express.

Suspicious Form Actions

The form action points to an unexpected PHP file.

🔬 Análise Integral de Ameaças

Tipo de Ameaça

Credential Harvesting Kit

Alvo

American Express (Amex) users (International)

Método de Ataque

Brand impersonation + credential harvesting forms

Canal de Exfiltração

HTTP POST to backend

Avaliação de Risco

MEDIUM - Automated credential harvesting with HTTP POST to backend

⚠️ Indicators of Compromise

Kit types: Credential Harvester

🏢 Análise de Falsificação de Marca

Impersonated Brand

American Express

Official Website

https://www.americanexpress.com/

Fake Service

American Express Membership Rewards

Fraudulent Claims

⚔️ Metodologia de Ataque

Primary Method: Credential Harvesting

The site attempts to collect user's phone number through a form.

🌐 Indicadores de Compromisso de Infraestrutura

Domain Information

Domínio

amex-puntos.com

Registered

Unknown

Registrar

Unknown

Estado

Active

🤖 AI-Extracted Threat Intelligence

Scan History for amex-puntos.com

Found 6 other scans for this domain

https://amex-puntos.com/pages/points.php ?

https://amex-puntos.com/pages/phone.php ?

https://amex-puntos.com/ ?

https://amex-puntos.com/pages/payment.php ?

https://amex-puntos.com/login_up.php Plesk Mai 07, 2026 19:10

https://amex-puntos.com/pages/points.php American Express (Amex) Mar 16, 2026 16:43

😰

"Nunca pensei que aconteceria comigo"

Isso dizem os 2,3 milhões de vítimas a cada ano. Não espere para ser uma estatística.