Phishing Analysis
Detailed analysis of captured phishing page
100
Risk Score
High Risk
Threat Level: BAJO
• Impersonating: Dropbox
- • Threat: No phishing detected
- • Target: Dropbox users
- • Method: Legitimate login page for Dropbox Paper
- • Exfil: No data exfiltration detected
- • Indicators: Domain matches brand, no free hosting, consistent branding
- • Risk: LOW - Legitimate Dropbox service
⚠ Risk Factors
- JavaScript obfuscation detected (7 patterns)
- Credential harvesting indicators detected
- OTP/2FA stealing indicators detected
Visual Capture
No screenshot available
Detection Info
https://www.dropbox.com/paper/doc/46eiZGM6YS4Up1aRhrfkX?auth_token=cd.AFuTvO_UzZtBksdfuUjZUUMWELUwer-PgZNv4ixNdCSari6pHPlUkHNciel7hPAYlg6S2XKzVA3IjPwqe0rC9BGBqTHb1P3zj9duekHzUpx3qjxfeCSl1SYoxX76yNmmkQWhx8azHj7vLoJcESpYPhkny7klmLYHdW9vb9urMb97wM04TDMbL__q_1FwiM25QSUSk_oxin19natpRg2J-EjX4jKmMfP7tVeRdqvWecx-wgIY2QwrK3Bjo6DilpbZw3X3xv4bWWGY0rM4vUKv0J8j3LMMOUilb6qfnHrVLi0i9uOV4Gk6I8W4Rc5noQIbwg8pzoRIPiYjm9UixQQa9QY9mm-mCNUcMBTYM4z_JXjalx4Nv7Soua6mlZzhtePc4PXcaoxtFmAYnMFsoWiF7QpttC-h3K1ItHs5EJ-HaQwsY7bkfkjDInVVPvJgz8k7ofCEc2qF30Dz2Em0tDnK56mM&doc_id=RzyQoBDDtTjOtgVuIMckc&redirect=https%3A%2F%2Fwww.dropbox.com%2Fscl%2Ffi%2Fp6uueup80xu1alsiu5w8f%2FSign-in-to-update-your-account-below_.paper%3Frlkey%3Dkuzcxlblbxk360pvapmousqpu%26dl%3D0
Detected Brand
Dropbox
Country
International
Confidence
100%
HTTP Status
200
Report ID
087093f6-349…
Analyzed
2026-01-08 20:42
Final URL (after redirects)
https://www.dropbox.com/scl/fi/p6uueup80xu1alsiu5w8f/Sign-in-to-update-your-account-below.paper?rlkey=kuzcxlblbxk360pvapmousqpu&dl=0
Content Hashes (HTML Similarity)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1A14308F16178147D1237CEDDE2572724BB9AE198E59418E0E95DC3F805EAC71F80FA0A |
|
CONTENT
ssdeep
|
1536:ABTUt+ezeyqS6lnFql6te3JezK3X0wvg6BeSeeevCee+IF0oslNeeecYYXYvxl74:Abyl3P/7ajI+yqj2SV |
Visual Hashes (Screenshot Similarity)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
f007dcd754451cd5 |
|
VISUAL
aHash
|
7ea7c2c3e7cfffd6 |
|
VISUAL
dHash
|
b069960e0c9840b0 |
|
VISUAL
wHash
|
18e7c06467c7f3d0 |
|
VISUAL
colorHash
|
07001000180 |
|
VISUAL
cropResistant
|
b069960e0c9840b0 |
Code Analysis
Risk Score
100/100
Threat Level
BAJO
🎣 Credential Harvester
🎣 OTP Stealer
🎣 Card Stealer
🎣 Banking
🎣 Personal Info
🔬 Threat Analysis Report
• Threat: No phishing detected
• Target: Dropbox users
• Method: Legitimate login page for Dropbox Paper
• Exfil: No data exfiltration detected
• Indicators: Domain matches brand, no free hosting, consistent branding
• Risk: LOW - Legitimate Dropbox service
🔒 Obfuscation Detected
- atob
- eval
- fromCharCode
- unescape
- hex_escape
- unicode_escape
- base64_strings
Similar Websites
Pages with identical visual appearance (based on perceptual hash)
Dropbox
https://www.dropbox.com/paper/doc/46eiZGM6YS4Up1aRhrfkX?auth...
Jan 10, 2026
Dropbox
https://www.dropbox.com/paper/doc/46eiZGM6YS4Up1aRhrfkX?auth...
Jan 10, 2026
Dropbox
https://www.dropbox.com/paper/doc/46eiZGM6YS4Up1aRhrfkX?auth...
Jan 10, 2026
Dropbox
https://www.dropbox.com/paper/doc/46eiZGM6YS4Up1aRhrfkX?auth...
Jan 09, 2026
Dropbox
https://www.dropbox.com/paper/doc/46eiZGM6YS4Up1aRhrfkX?auth...
Jan 09, 2026
Scan History for www.dropbox.com
Found 10 other scans for this domain
-
https://www.dropbox.com/paper/doc/46eiZGM6YS4Up1aR...
https://www.dropbox.com/paper/doc/smfNkrLUs7ttROOC...
https://www.dropbox.com/paper/doc/ajzD8mjTHKChWJ2p...
https://www.dropbox.com/paper/doc/4hFsYZqIdYd7k0Md...
https://www.dropbox.com/paper/doc/4hFsYZqIdYd7k0Md...
https://www.dropbox.com/paper/doc/46eiZGM6YS4Up1aR...
https://www.dropbox.com/paper/doc/ajzD8mjTHKChWJ2p...
https://www.dropbox.com/paper/doc/smfNkrLUs7ttROOC...
https://www.dropbox.com/paper/doc/ajzD8mjTHKChWJ2p...
https://www.dropbox.com/paper/doc/smfNkrLUs7ttROOC...