EN ES PT

Phishing Analysis

Detailed analysis of captured phishing page

Back to Stats
100 Risk Score

High Risk

Threat Level: ALTO • Impersonating: Binance

⚠ Fatores de Risco

  • Contém 2 formulário(s) com submissão JavaScript
  • Ofuscação JavaScript detectada (10 padrões)
  • Indicadores de roubo de credenciais detectados
  • Indicadores de roubo de otp/2fa detectados
  • Conexão WebSocket para comunicação C2 em tempo real

Visual Capture

Screenshot of www.binance.info

Detection Info

https://www.binance.info/?bfp
Detected Brand
Binance
Country
International
Confidence
100%
HTTP Status
200
Report ID
28a7de6d-306…
Analyzed
2026-01-09 22:29
Final URL (after redirects)
https://www.binance.info/en?bfp

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T14354FBF3A394A2AA9107D7E4FD316B29715770FEEFD6C95D51B84F8163828ACC948C80
CONTENT ssdeep
1536:OY2HL9FEbwyj7UhnPAaRMoYTm5edGBbqWYNk2RoEKwu9qfqF8XGcwouGgmx/vjpG:OY2HL9eoyhIIbG/g4ZCsLzphJhX1bxnz

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
c9e3639c9c34c99c
VISUAL aHash
01647c181c180020
VISUAL dHash
33c8d0f0b0b00cc9
VISUAL wHash
ff6c7e3c3e180068
VISUAL colorHash
38007010000
VISUAL cropResistant
8004329e8e162000,33c8d0f0b0b00cc9

Code Analysis

Risk Score 100/100
Threat Level ALTO
⚠️ Phishing Confirmed
🎣 Credential Harvester 🎣 OTP Stealer 🎣 Card Stealer 🎣 Banking 🎣 Personal Info
WebSocket C2

🔒 Obfuscation Detected

  • atob
  • eval
  • fromCharCode
  • unescape
  • document.write
  • hex_escape
  • unicode_escape
  • js_packer
  • base64_strings
  • char_array