Phishing Analysis
Detailed analysis of captured phishing page
Visual Capture
No screenshot available
Detection Info
http://notifmv33.clanweb.eu/nklm/?return_url=https%3A%2F%2Fwww.orange.fr%2Fportail&_Authentication=f2a22123ddc97a87f45fa50424340fbc89b2cfe7139098322cb332f08ab88c2975f69dbe4e8676b850a293647487253f0b12188986c2147ad9e4dd5b
Detected Brand
Unknown
Country
Unknown
Confidence
N/A
HTTP Status
N/A
Report ID
7e18f7f1-26e…
Analyzed
Code Analysis
Threat Level
ALTO
⚠️ Phishing Confirmed
🔬 Threat Analysis Report
• Threat: Credential phishing attack targeting Orange users.
• Target: Orange customers, especially in France.
• Method: Fake login page designed to steal Orange account credentials (email/phone).
• Exfil: Likely a custom API or email to capture the stolen credentials (not specified).
• Indicators: Domain mismatch (clanweb.eu), Orange branding, input form for email/phone, free hosting.
• Risk: HIGH - Immediate theft of Orange account credentials is possible.
Scan History for notifmv33.clanweb.eu
Found 10 other scans for this domain
-
http://notifmv33.clanweb.eu/nklm/?return_url=https...
http://notifmv33.clanweb.eu/nklm/?return_url=https...
http://notifmv33.clanweb.eu/nklm/?return_url=https...
http://notifmv33.clanweb.eu/nklm/?return_url=https...
http://notifmv33.clanweb.eu/nklm/?return_url=https...
http://notifmv33.clanweb.eu/nklm/?return_url=https...
https://notifmv33.clanweb.eu/nklm/?return_url=http...
https://notifmv33.clanweb.eu/nklm/?return_url=http...
http://notifmv33.clanweb.eu/nklm/?return_url=https...
https://notifmv33.clanweb.eu/nklm/?return_url=http...