EN ES PT

Phishing Analysis

Detailed analysis of captured phishing page

Back to Stats
100 Risk Score

High Risk

Threat Level: ALTO • Impersonating: Bitget
  • • Threat: Credential harvesting phishing kit
  • • Target: Bitget users globally
  • • Method: Fake login form stealing email and password
  • • Exfil: Data sent via WebSocket (wss://wss.abazr.shop/wss)
  • • Indicators: Recent domain, obfuscated JavaScript, domain mismatch
  • • Risk: HIGH - Immediate credential theft

⚠ Risk Factors

  • JavaScript obfuscation detected (6 patterns)
  • Credential harvesting indicators detected
  • OTP/2FA stealing indicators detected
  • WebSocket connection for real-time C2 communication

Visual Capture

Screenshot of bitgetrade.top

Detection Info

https://bitgetrade.top
Detected Brand
Bitget
Country
International
Confidence
100%
HTTP Status
200
Report ID
b7fdc5ff-948…
Analyzed
2026-01-11 08:36
Final URL (after redirects)
https://bitgetrade.top/#/

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T1D2F2FE3E70463A5E543BC5C4F4A07F14BA77BBBAD1280E9A936496753FCACE06C21364
CONTENT ssdeep
768:htt0ms9wRsgZ2R8LNYu9fefQ2Zq3xrrgWne0Ld70r0PCtTzhBeC3L:0WTZlZYu9fefQ2Zq3xrr7e0LdmTzhBeo

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
9b8083bf333d3534
VISUAL aHash
ffff000000000000
VISUAL dHash
dbe9b60943434355
VISUAL wHash
ffff42ff81818001
VISUAL colorHash
30001000180
VISUAL cropResistant
c3c3c3c3c2c0c2e2,dbe9b60943434355

Code Analysis

Risk Score 100/100
Threat Level ALTO
⚠️ Phishing Confirmed
🎣 Credential Harvester 🎣 OTP Stealer 🎣 Card Stealer 🎣 Banking 🎣 Personal Info
WebSocket C2

🔬 Threat Analysis Report

• Threat: Credential harvesting phishing kit
• Target: Bitget users globally
• Method: Fake login form stealing email and password
• Exfil: Data sent via WebSocket (wss://wss.abazr.shop/wss)
• Indicators: Recent domain, obfuscated JavaScript, domain mismatch
• Risk: HIGH - Immediate credential theft

🔒 Obfuscation Detected

  • atob
  • fromCharCode
  • unescape
  • document.write
  • unicode_escape
  • base64_strings