Phishing Analysis
Detailed analysis of captured phishing page
95
Risk Score
High Risk
Threat Level: MEDIO
• Impersonating: VK
- • Ameaça: Phishing de captcha
- • Alvo: Usuários do VK
- • Método: Solicita a interação do usuário por meio de um prompt 'prove que não é um robô' em um domínio não oficial.
- • Exfil: Potencialmente redireciona usuários ou executa JavaScript malicioso.
- • Indicadores: O domínio away.vk.com não corresponde ao domínio oficial vk.com, javascript ofuscado, detecção de envio de formulário javascript
- • Risco: MÉDIO - Redirecionamentos e/ou Javascript malicioso.
⚠ Fatores de Risco
- Ofuscação JavaScript detectada (6 padrões)
- Indicadores de roubo de credenciais detectados
- Indicadores de roubo de otp/2fa detectados
Visual Capture
Detection Info
https://away.vk.com/away.php?rh=e0a56a34-c3a1-4e38-a36a-5db49935acb1
Detected Brand
VK
Country
Russia
Confidence
100%
HTTP Status
200
Report ID
0449308c-c8d…
Analyzed
2026-01-05 21:12
Final URL (after redirects)
https://away.vk.com/challenge.html?tid=fTrXx7C0kwostkdIj1SsBOV4jcReJg&hash429=k50YE2LNkToTcOR0Ie5qFFyBqHgevh0xmreTne0C3tC-ELi2fMVpbFnTjbWKRV5ZX_De8CM0hQpeGuc-3uQhcF7QD4hK6AykgrtVcGITYKfHdhNYjwLeWQ7R9TD2Gwdv24VYe7OO9pQ_WoWT&sign=ZxSZSAcXBQDpd7Uj_vUHpg&back=https%3A%2F%2Faway.vk.com%2Faway.php%3Frh%3De0a56a34-c3a1-4e38-a36a-5db49935acb1&origin=&lang_id=
Content Hashes (HTML Similarity)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T184D183E4AA3CA63D140F87ACCB6EF681235FA0EDF3170554638E96B10583E6CED46C54 |
|
CONTENT
ssdeep
|
96:e35KFSe0BlTSc/Q04JvN/Un4jFSe0BlTSc/Q04JWatPTOYuFA9ed/WqtuXr:ZAN3J4JvBAN3J4J/iVW9eJW4uXr |
Visual Hashes (Screenshot Similarity)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
cccc3333cccc6333 |
|
VISUAL
aHash
|
0000181818180000 |
|
VISUAL
dHash
|
100c32b2b2320c10 |
|
VISUAL
wHash
|
3c3c3c3c38383030 |
|
VISUAL
colorHash
|
070000001c0 |
|
VISUAL
cropResistant
|
100c32b2b2320c10 |
Code Analysis
Risk Score
95/100
Threat Level
MEDIO
⚠️ Phishing Confirmed
🎣 Credential Harvester
🎣 OTP Stealer
🎣 Card Stealer
🎣 Banking
🎣 Personal Info
🔬 Threat Analysis Report
• Ameaça: Phishing de captcha
• Alvo: Usuários do VK
• Método: Solicita a interação do usuário por meio de um prompt 'prove que não é um robô' em um domínio não oficial.
• Exfil: Potencialmente redireciona usuários ou executa JavaScript malicioso.
• Indicadores: O domínio away.vk.com não corresponde ao domínio oficial vk.com, javascript ofuscado, detecção de envio de formulário javascript
• Risco: MÉDIO - Redirecionamentos e/ou Javascript malicioso.
🔒 Obfuscation Detected
- atob
- eval
- fromCharCode
- unescape
- document.write
- base64_strings
Similar Websites
Pages with identical visual appearance (based on perceptual hash)
No screenshot
VK
https://away.vk.com/away.php?rh=27a6d38b-c8b7-4a68-8e6e-3083...
Jan 06, 2026
No screenshot
Unknown
https://away.vk.com/away.php?rh=018cf90a-4e78-44ca-ab08-2801...
Jan 05, 2026
No screenshot
VK
https://away.vk.com/away.php?rh=0623d2bf-2f0f-4971-abac-dff0...
Jan 05, 2026
No screenshot
VK
https://976tep2sg8.vk.com/challenge.html?tid=l:R2ShjljdILOvY...
Jan 05, 2026
No screenshot
VK
https://away.vk.com/away.php?rh=62491136-b05f-476a-94fe-7262...
Jan 05, 2026
Scan History for away.vk.com
Found 10 other scans for this domain
-
https://away.vk.com/away.php?rh=cfd366b6-171c-4507...
https://away.vk.com/away.php?rh=ed5bc5bb-a7ba-499f...
https://away.vk.com/away.php?rh=54635185-f7f2-4aa4...
https://away.vk.com/away.php?rh=5c50e51d-3c82-4079...
https://away.vk.com/away.php?rh=6d55571d-68fc-481c...
https://away.vk.com/away.php?rh=475c33a9-524d-48f1...
https://away.vk.com/away.php?rh=ad73d2d3-158f-4f26...
https://away.vk.com/away.php?rh=31d2d1ce-ece4-4199...
https://away.vk.com/away.php?rh=e1e2fa49-4236-450e...
https://away.vk.com/away.php?rh=fccbf99d-2a9a-4108...