EN ES PT

Phishing Analysis

Detailed analysis of captured phishing page

Back to Stats
100 Risk Score

High Risk

Threat Level: ALTO • Impersonating: Bancari

⚠ Risk Factors

  • Brand impersonation of Bancari on non-official domain
  • Contains 6 form(s) with JavaScript submission
  • JavaScript obfuscation detected (8 patterns)
  • Credential harvesting indicators detected
  • OTP/2FA stealing indicators detected

Visual Capture

Screenshot of www.zheard.net

Detection Info

https://www.zheard.net/2020/11/crea-una-captura-falsa-de-tu-cuenta.html
Detected Brand
Bancari
Country
Peru
Confidence
100%
HTTP Status
200
Report ID
29de37e2-fe9…
Analyzed
2026-01-09 22:29

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T11A43E8B1A4842D375633C3C0BBA5732DE283824DCB825B8595E4935F5BC6FB1FE9124A
CONTENT ssdeep
1536:77h5WaVbmG2za14CbPi6ASn2Dv/9XrssY/RVfzYOY7RivSD6TX:7t5WZhSsoTTX

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
c9ce32ced9cc3286
VISUAL aHash
0000181818380040
VISUAL dHash
230a30b2b270669a
VISUAL wHash
df003e18787afa4a
VISUAL colorHash
07001000640
VISUAL cropResistant
a2a2aaa62923a2e0,230a30b2b270669a

Code Analysis

Risk Score 100/100
Threat Level ALTO
⚠️ Phishing Confirmed
🎣 Credential Harvester 🎣 OTP Stealer 🎣 Banking 🎣 Personal Info

🔐 Credential Harvesting Forms

🔒 Obfuscation Detected

  • atob
  • eval
  • fromCharCode
  • unescape
  • hex_escape
  • unicode_escape
  • js_packer
  • base64_strings

Scan History for www.zheard.net

Found 1 other scan for this domain