EN ES PT

Phishing Analysis

Detailed analysis of captured phishing page

Back to Stats

Captura Visual

Screenshot of m.padisahbet-application.com

Informações de Detecção

http://m.padisahbet-application.com/
Detected Brand
Padisahbet
Country
International
Confiança
95%
HTTP Status
200
Report ID
d6a3183d-83d…
Analyzed
2026-06-15 10:13

Hashes de Conteúdo (Similaridade HTML)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T1D2C263A191D2F83B02B7C2C762AA9B7B72E6920ED813160253FD876D0BDED41FC53416
CONTENT ssdeep
384:2Sv+5o5uoHHrEUgWMDMLhUCDqhraaXNjcKiO708qu5wUE696bQb:2S25oIoHIqJoR9whO708qCwUEgeQb

Hashes Visuais (Similaridade de Captura)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
c13e3c3d738cc0e3
VISUAL aHash
02007c7464783060
VISUAL dHash
9698c0c4c8c2e4c8
VISUAL wHash
42047e7666787e66
VISUAL colorHash
16000038000
VISUAL cropResistant
a42727555797953a,aa2b2826a6e42b93,61254d2d795b7929,0206b02e0f904a02,9698c0c4c8c2e4c8

Análise de Código

Risk Score 53/100
Nível de Ameaça ALTO
⚠️ Phishing Confirmed
🎣 OTP Stealer

🔬 Threat Analysis Report

• Ameaça: Phishing / Fraude de apostas
• Alvo: Usuários do Padisahbet
• Método: Domínio recém-registrado
• Exfil: Desconhecido (Provavelmente formulário de coleta de credenciais)
• Indicadores: Idade do domínio < 24 horas, ofuscação
• Risco: Alto

🔒 Obfuscation Detected

  • unescape

📡 API Calls Detected

  • POST

📊 Detalhamento da Pontuação de Risco

Total Risk Score
95/100

Contributing Factors

Domain Age
Domain is 0 days old
JS Obfuscation
Detected unescape obfuscation

🔬 Análise Integral de Ameaças

Tipo de Ameaça
Two-Factor Authentication Stealer
Alvo
Padisahbet users (International)
Método de Ataque
Brand impersonation + obfuscated JavaScript
Canal de Exfiltração
Form submission (backend endpoint not detected - likely JavaScript-based)
Avaliação de Risco
MEDIUM - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)

⚠️ Indicators of Compromise

  • Kit types: OTP Stealer
  • 2 obfuscation techniques

🏢 Análise de Falsificação de Marca

Impersonated Brand
Padisahbet
Official Website
Unknown
Fake Service
Betting/Casino

Fraudulent Claims

⚔️ Metodologia de Ataque

Primary Method: Credential Harvesting

Impersonates a betting site to trick users into entering their login credentials or registering new accounts to capture PII.

Secondary Method: Phishing-as-a-Service

Uses obfuscated JS to evade simple signature-based scanners.

🌐 Indicadores de Compromisso de Infraestrutura

Domain Information

Domínio
m.padisahbet-application.com
Registered
2026-06-14
Registrar
Unknown
Estado
Suspicious

🤖 AI-Extracted Threat Intelligence

😰
"Nunca pensei que aconteceria comigo"
Isso dizem os 2,3 milhões de vítimas a cada ano. Não espere para ser uma estatística.