Phishing Analysis
Detailed analysis of captured phishing page
Captura Visual
Informações de Detecção
Hashes de Conteúdo (Similaridade HTML)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1EDC18771121560BF23170674B2957BA4D086D75CC2534FAD72E863EBABEEDA0C882396 |
|
CONTENT
ssdeep
|
96:rTGTiB6beB9SRkykS1PBqAFw0A2LhVKzKGKztGK6GK7GK+TGKVSenu:3GTHbXRkFS1PBVw8Vespllu |
Hashes Visuais (Similaridade de Captura)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
bc16476c473d3645 |
|
VISUAL
aHash
|
00ffdfdfff8383ff |
|
VISUAL
dHash
|
a4203a182b2b2b2b |
|
VISUAL
wHash
|
008f9f8fdb8383c3 |
|
VISUAL
colorHash
|
07002410000 |
|
VISUAL
cropResistant
|
2a383a182b2b2b2b,4414d4ccdc340443,240bf561ceec713b,aa1771710ff07192 |
Análise de Código
🔒 Obfuscation Detected
- atob
- fromCharCode
- unescape
- unicode_escape
- base64_strings
📡 API Calls Detected
- 0x3b3b57de
📊 Detalhamento da Pontuação de Risco
Contributing Factors
🔬 Análise Integral de Ameaças
⚠️ Indicators of Compromise
- Kit types: Credential Harvester, OTP Stealer, Banking, Personal Info
- 171 obfuscation techniques
🏢 Análise de Falsificação de Marca
⚔️ Metodologia de Ataque
Primary Method: Credential Harvesting
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Secondary Method: JavaScript Obfuscation
Malicious code is obfuscated using 171 techniques to evade detection by security scanners and make reverse engineering more difficult.
Drainer supports multiple blockchain networks and checks for high-value tokens on each chain before executing drain operations.
🌐 Indicadores de Compromisso de Infraestrutura
Domain Information
Hosting Information
🤖 AI-Extracted Threat Intelligence
Similar Websites
Pages with identical visual appearance (based on perceptual hash)
Scan History for stake-chicoworld.pages.dev
Found 1 other scan for this domain
