Phishing Analysis: Bitget

100 Risk Score

High Risk

Threat Level: ALTO • Impersonating: Bitget

• Threat: Cryptocurrency phishing site
• Target: Bitget users
• Method: Fake deposit and swap forms to steal credentials
• Exfil: Obfuscated JavaScript detected
• Indicators: Domain mismatch, recent domain age, form submission
• Risk: HIGH - Immediate credential and fund theft

⚠ Risk Factors

JavaScript obfuscation detected (5 patterns)
Credential harvesting indicators detected
OTP/2FA stealing indicators detected

Visual Capture

Detection Info

https://bitgetnb.com

Detected Brand

Bitget

Country

International

Confidence

100%

HTTP Status

200

Report ID

d589ddcc-d2d…

Analyzed

2026-01-11 08:35

Final URL (after redirects)

https://bitgetnb.com/mobile/#/

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm	Hash Value
CONTENT TLSH	T14C33CE20B253B457923394D0B9991F29B256C737C3058B18D3E87927EECFCE46A9439B
CONTENT ssdeep	1536:amoneGHw7SiI9PbOJ6Pw/64pgrnmnacLf6eLfqsLf4BLfMcTzhBeC3D:Qn

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm	Hash Value
VISUAL pHash	d4d0392f2f4bd0e4
VISUAL aHash	003efe3c70002001
VISUAL dHash	19f8f461a21dcd46
VISUAL wHash	083efebcf000f58b
VISUAL colorHash	30012000040
VISUAL cropResistant	dcb66a61616af4f8,fc62934ab8d27634,ffffffefefefffff,19f8f461a21dcd46,cd0e26733530b38f

Code Analysis

Risk Score 100/100

Threat Level ALTO

⚠️ Phishing Confirmed

🎣 Credential Harvester 🎣 OTP Stealer 🎣 Card Stealer 🎣 Banking 🎣 Personal Info

🔬 Threat Analysis Report

• Threat: Cryptocurrency phishing site
• Target: Bitget users
• Method: Fake deposit and swap forms to steal credentials
• Exfil: Obfuscated JavaScript detected
• Indicators: Domain mismatch, recent domain age, form submission
• Risk: HIGH - Immediate credential and fund theft

🔒 Obfuscation Detected

atob
fromCharCode
unescape
unicode_escape
base64_strings