EN ES PT

Phishing Analysis

Detailed analysis of captured phishing page

Back to Stats

Captura Visual

No screenshot available

Informações de Detecção

https://santeassurancemiss.ngrok.pro/mycss-ch/
Detected Brand
CSS
Country
Switzerland
Confiança
95%
HTTP Status
200
Report ID
cdfd5b4e-ea8…
Analyzed
2025-12-23 13:12

Hashes de Conteúdo (Similaridade HTML)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T1CB11D046409C5E6F5743D1F413E6D30A39E2D591CF432B0E4BF863DC1AD6F86C965184
CONTENT ssdeep
24:3CZiW9WAuWMqqNEN9u2mdqt2Wj7dwvrCZXR2CTR:Al9TufvaHSdyj3dw4xR

Hashes Visuais (Similaridade de Captura)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
cccc33333399cc66
VISUAL aHash
0000181818180000
VISUAL dHash
0830b2b22ab23008
VISUAL wHash
3c2418181b1b071f
VISUAL colorHash
00007000000
VISUAL cropResistant
0830b2b22ab23008

Análise de Código

Risk Score 75/100
Nível de Ameaça ALTO
🎣 Credential Harvester
Telegram Exfiltration

🔬 Threat Analysis Report

• Threat: Credential harvesting phishing kit
• Target: CSS insurance users
• Method: Fake login form stealing email and password
• Exfil: Unknown, likely to a fraudulent server
• Indicators: Unofficial domain (ngrok.pro), brand impersonation
• Risk: HIGH - Immediate credential theft

🔑 Telegram Bot Tokens (1)

  • 8404840326:AAH8...czES9qec

Similar Websites

Pages with identical visual appearance (based on perceptual hash)

Screenshot
Desconhecido
http://public.mexc.co.com
Jun 11, 2026
 Screenshot
Desconhecido
http://38.60.224.210:8080
Jun 11, 2026
No screenshot
Spaceman
https://pub-693a153fb9974e4fb43c012320abd95e.r2.dev/spaceman...
Dez 30, 2025
No screenshot
CSS
https://mariupercoolfantacola.webflow.io/csdd
Dez 23, 2025
😰
"Nunca pensei que aconteceria comigo"
Isso dizem os 2,3 milhões de vítimas a cada ano. Não espere para ser uma estatística.