Phishing Analysis
Detailed analysis of captured phishing page
95
Risk Score
High Risk
Threat Level: BAJO
• Impersonating: CMR
- • Threat: No apparent threat, informational website.
- • Target: General public, potential donors and beneficiaries.
- • Method: Information dissemination regarding the organization's mission.
- • Exfil: No data exfiltration detected.
- • Indicators: Legitimate website content.
- • Risk: LOW - Informational website for a charity.
⚠ Risk Factors
- Brand impersonation of CMR on non-official domain
- Contains 2 form(s) with JavaScript submission
- JavaScript obfuscation detected (6 patterns)
- Credential harvesting indicators detected
- OTP/2FA stealing indicators detected
Visual Capture
No screenshot available
Detection Info
https://tinyurl.com/AfricanBank-pay
Detected Brand
CMR
Country
South Africa
Confidence
100%
HTTP Status
N/A
Report ID
8dfb4cab-ab3…
Analyzed
2026-01-08 14:06
Final URL (after redirects)
https://cmrportelizabeth.co.za/about-us/
Content Hashes (HTML Similarity)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T19AD2B573E24C193B234342C2B6256B5AE291930CC7534A9822F493BE5BC7DE2C97775A |
|
CONTENT
ssdeep
|
768:4aXo20ii/GoOLAGcBBDjSKXb9RMmloYF4g:4aY24/GoOLAGcBZyg |
Visual Hashes (Screenshot Similarity)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
bc4e470a573a5732 |
|
VISUAL
aHash
|
00ffdfdfcfffcfff |
|
VISUAL
dHash
|
480617361e3b1b0e |
|
VISUAL
wHash
|
00c3c3c3c7dfc3c6 |
|
VISUAL
colorHash
|
07038000000 |
|
VISUAL
cropResistant
|
480616361c331b0e,804041484c414080 |
Code Analysis
Risk Score
95/100
Threat Level
BAJO
🎣 Credential Harvester
🎣 OTP Stealer
🎣 Personal Info
🔬 Threat Analysis Report
• Threat: No apparent threat, informational website.
• Target: General public, potential donors and beneficiaries.
• Method: Information dissemination regarding the organization's mission.
• Exfil: No data exfiltration detected.
• Indicators: Legitimate website content.
• Risk: LOW - Informational website for a charity.
🔒 Obfuscation Detected
- atob
- eval
- fromCharCode
- unescape
- unicode_escape
- base64_strings
Scan History for tinyurl.com
Found 10 other scans for this domain
-
https://tinyurl.com/HotelCLoudbedsOnline
http://www.tinyurl.com/3jezuutj/
https://tinyurl.com/3huh9jyy
https://tinyurl.com/3huh9jyy
https://tinyurl.com/mr2w2mfu
https://tinyurl.com/publons-JABB
https://tinyurl.com/4bk5wvsf
https://tinyurl.com/app/nospam/tinyurl.com/1uu5hju...
https://tinyurl.com/ggmythic
https://tinyurl.com/28r5ha7c