Phishing Analysis: Roblox

100 Risk Score

High Risk

Threat Level: ALTO • Impersonating: Roblox

• Threat: Account hijacking and credential theft.
• Target: Roblox users
• Method: Fake Roblox website prompts users to enter login credentials, which are then stolen by the attacker.
• Exfil: Credentials likely exfiltrated to a remote server controlled by the attacker.
• Indicators: Domain mismatch, brand impersonation, potentially obfuscated JavaScript.
• Risk: HIGH - Potential for immediate account compromise and identity theft.

⚠ Risk Factors

JavaScript obfuscation detected (8 patterns)
Credential harvesting indicators detected
OTP/2FA stealing indicators detected

Visual Capture

Detection Info

https://roblox.com.kz/users/154492639/profile

Detected Brand

Roblox

Country

International

Confidence

100%

HTTP Status

200

Report ID

e0fb37df-75f…

Analyzed

2026-01-05 01:02

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm	Hash Value
CONTENT TLSH	T14893B8B29251243320BFB1D9F1297709A2D3D74EC68287D1F2F8636B1ED6CA1F817856
CONTENT ssdeep	1536:uNrXWnSraIUuOjToj8BPmzzXXMd6MiucCOK:ArXWdIUuOEkmzzXXMd6M1cCOK

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm	Hash Value
VISUAL pHash	b44747139cecccd1
VISUAL aHash	0000f3dbdfffc3ff
VISUAL dHash	e8c8a636183e1632
VISUAL wHash	0000c3d3cfdfc3db
VISUAL colorHash	07000008180
VISUAL cropResistant	e8c8a636183e1632

Code Analysis

Risk Score 100/100

Threat Level ALTO

⚠️ Phishing Confirmed

🎣 Credential Harvester 🎣 OTP Stealer 🎣 Card Stealer 🎣 Banking 🎣 Personal Info

🔬 Threat Analysis Report

• Threat: Account hijacking and credential theft.
• Target: Roblox users
• Method: Fake Roblox website prompts users to enter login credentials, which are then stolen by the attacker.
• Exfil: Credentials likely exfiltrated to a remote server controlled by the attacker.
• Indicators: Domain mismatch, brand impersonation, potentially obfuscated JavaScript.
• Risk: HIGH - Potential for immediate account compromise and identity theft.

🔐 Credential Harvesting Forms

🔒 Obfuscation Detected

atob
eval
fromCharCode
unescape
hex_escape
unicode_escape
js_packer
base64_strings

Scan History for roblox.com.kz

Found 10 other scans for this domain

https://roblox.com.kz/users/1618139589/profile ? Jan 11, 2026 13:01

https://roblox.com.kz/users/437787618/profile Roblox Jan 09, 2026 04:09

https://roblox.com.kz/users/190934801/profile Roblox Jan 07, 2026 01:18

https://roblox.com.kz/users/598235467/profile Unknown Jan 06, 2026 01:09

https://roblox.com.kz/users/13238485051/profile Roblox Jan 06, 2026 01:09

https://roblox.com.kz/users/1729443456/profile Roblox Jan 05, 2026 01:14

https://www.roblox.com.kz/users/2021794753/profile Roblox Jan 04, 2026 13:22

https://roblox.com.kz/users/1015010701/profile ? Jan 04, 2026 13:14

http://www.roblox.com.kz/users/1832287491/profile/ Roblox Jan 04, 2026 13:02

https://roblox.com.kz/users/10444741951/profile* Roblox Jan 04, 2026 01:27