Phishing Analysis
Detailed analysis of captured phishing page
90
Risk Score
High Risk
Threat Level: ALTO
• Impersonating: iObeya
⚠ Risk Factors
- JavaScript obfuscation detected (5 patterns)
- Credential harvesting indicators detected
- OTP/2FA stealing indicators detected
Visual Capture
Detection Info
https://orange.iobeya.com/s/download/resources/client-html-plugin/4.5.19.83329/public/
Detected Brand
iObeya
Country
Unknown
Confidence
100%
HTTP Status
200
Report ID
df6e166e-293…
Analyzed
2026-01-09 23:08
Final URL (after redirects)
https://orange.iobeya.com/login.action
Content Hashes (HTML Similarity)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1C6F1C6B211049D6C600383F4E2A93A6A616B936BCB4B8A08D2F4D7F91BD5C48CC2B2D4 |
|
CONTENT
ssdeep
|
96:n7zgSBZR2QtY3rxvB09ovi5WY8bxhUZVudHPo90SHC6vGYuXFznf8luvY1:/BCrxv61WYo3gudoVvGYef8kQ1 |
Visual Hashes (Screenshot Similarity)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
e3a4891e989b9de1 |
|
VISUAL
aHash
|
e0e0e0e0e0e0e0e0 |
|
VISUAL
dHash
|
cc4c4d4d4d494949 |
|
VISUAL
wHash
|
f7e0e0f0e0e0e0f9 |
|
VISUAL
colorHash
|
030000001c0 |
|
VISUAL
cropResistant
|
cc4c4d4d4d494949,5dddaae6c5eba3c7,bc78f8f17166e4c4 |
Code Analysis
Risk Score
90/100
Threat Level
ALTO
⚠️ Phishing Confirmed
🎣 Credential Harvester
🎣 OTP Stealer
🔐 Credential Harvesting Forms
🔒 Obfuscation Detected
- fromCharCode
- unescape
- hex_escape
- unicode_escape
- base64_strings