EN ES PT

Phishing Analysis

Detailed analysis of captured phishing page

Back to Stats
100 Risk Score

High Risk

Threat Level: BAJO • Impersonating: Dropbox
  • • Threat: No credential harvesting or phishing detected
  • • Target: Dropbox users
  • • Method: Legitimate login prompt for Dropbox Paper
  • • Exfil: No data exfiltration detected
  • • Indicators: Official domain, no mismatched branding
  • • Risk: LOW - Legitimate site

⚠ Risk Factors

  • JavaScript obfuscation detected (7 patterns)
  • Credential harvesting indicators detected
  • OTP/2FA stealing indicators detected

Visual Capture

No screenshot available

Detection Info

https://www.dropbox.com/paper/doc/ajzD8mjTHKChWJ2pielaQ?auth_token=cd.AFvDbLvfTF2gseZXcMXYRsGzSqXi7mRn9poXVZTwLXisOHN6mbLA8lBuUBUud_cyEBx9sERh02wpRCFmS6Gy4jiu8zFeODquymQyMTzGRpqISSQ-SGNCsF4wH1RpjGgpMle0-PoUc60nvqobCYQyZOhrlpqseqK1IrM7NT0aAHxmA8PJRDxzto66C8uVk1QxOCwLqI113HgJwdJP3YK7DiQd7NusuPWnMRYg-VlMRldQOlWx519J5TyIZU0B4oxnbtj4iya-LBd0DZOZ-I3cwuboC3wJ4t2PA1v46tzqzs7NDLkrHqQY2MT8pG0WY65NnYFKW7oETW3vZiVCgUEZAPOOGxvng8VqtPHtRA11MNu7_uOPPGGe149RyC8fyaol27KdHE8xnnWZ1tfrcmaTl6Yy2XaZ21L1u78sCL7MfwnfvtHtMzJ6bDfLsWDz958997yeUNxvA4MU_IWjLkT7RKZm&doc_id=N6-hCv1aaTW5Djz9g5K1W&redirect=https%3A%2F%2Fwww.dropbox.com%2Fscl%2Ffi%2Fumh2vmj5ytbkqkkeprogz%2FUPDATE.paper%3Fdl%3D0%26rlkey%3Dln16m744ya2gjuqruhqiisr3i
Detected Brand
Dropbox
Country
International
Confidence
100%
HTTP Status
200
Report ID
8c466295-18c…
Analyzed
2026-01-11 10:04
Final URL (after redirects)
https://www.dropbox.com/scl/fi/umh2vmj5ytbkqkkeprogz/UPDATE.paper?dl=0&rlkey=ln16m744ya2gjuqruhqiisr3i

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T143430AF16178147D1237CEDEE2633624BB9AE298E59418E1E95DC3F805E6C74F80FA06
CONTENT ssdeep
1536:A1mUt+ezeyqS6lnFql6ze33ezJfcke0wvg6CeSeeeCCeef1IF0kVsaeeecYYXYvk:AO86fckAx/7ajI+yqj2SV

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
f015dc475cd51c55
VISUAL aHash
7cc7cec7c3e7e7de
VISUAL dHash
b029940c0e8c48b0
VISUAL wHash
18e7c34340e4fedc
VISUAL colorHash
07001000180
VISUAL cropResistant
b029940c0e8c48b0

Code Analysis

Risk Score 100/100
Threat Level BAJO
🎣 Credential Harvester 🎣 OTP Stealer 🎣 Card Stealer 🎣 Banking 🎣 Personal Info

🔬 Threat Analysis Report

• Threat: No credential harvesting or phishing detected
• Target: Dropbox users
• Method: Legitimate login prompt for Dropbox Paper
• Exfil: No data exfiltration detected
• Indicators: Official domain, no mismatched branding
• Risk: LOW - Legitimate site

🔒 Obfuscation Detected

  • atob
  • eval
  • fromCharCode
  • unescape
  • hex_escape
  • unicode_escape
  • base64_strings

Similar Websites

Pages with identical visual appearance (based on perceptual hash)

No screenshot
Unknown
https://www.dropbox.com/paper/doc/ajzD8mjTHKChWJ2pielaQ?auth...
Jan 11, 2026
 Screenshot
Dropbox
https://www.dropbox.com/paper/doc/ajzD8mjTHKChWJ2pielaQ?auth...
Jan 11, 2026
No screenshot
Dropbox
https://www.dropbox.com/paper/doc/ajzD8mjTHKChWJ2pielaQ?auth...
Jan 11, 2026
 Screenshot
Dropbox
https://www.dropbox.com/paper/doc/ajzD8mjTHKChWJ2pielaQ?auth...
Jan 11, 2026
 Screenshot
Dropbox
https://www.dropbox.com/paper/doc/ajzD8mjTHKChWJ2pielaQ?auth...
Jan 11, 2026

Scan History for www.dropbox.com

Found 10 other scans for this domain