Phishing Analysis
Detailed analysis of captured phishing page
89
Risk Score
High Risk
Threat Level: ALTO
• Impersonating: Orange
⚠ Factores de Riesgo
- Suplantación de marca Orange en dominio no oficial
- Contiene 2 formulario(s) de captura de credenciales
- Indicadores de robo de credenciales detectados
- Indicadores de robo de otp/2fa detectados
Visual Capture
Detection Info
http://notifmv33.clanweb.eu/nklm/?return_url=https%3A%2F%2Fwww.orange.fr%2Fportail&_Authentication=873a1018c1684d4acd7db39f4da11dd8b9de24b86a84a56398fd69661bd36872608e0c434b041d9fb1d863fb63d3a0fbf510f900aec97a9137afcf08
Detected Brand
Orange
Country
Unknown
Confidence
100%
HTTP Status
200
Report ID
e60d67b0-aeb…
Analyzed
2026-01-09 01:46
Content Hashes (HTML Similarity)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T146C220D072444C37484F9BEAF792764B7032F3EAD5C22DE161788FB47A85EB0B89A151 |
|
CONTENT
ssdeep
|
384:yNZVTPLTP/Q9SR9SiWzaqnspiEKwW/Ys3VaIl7+PMQl9dwOX1dMOh+L:yNZVTPLTP/CYIl7+PMidwO1d/AL |
Visual Hashes (Screenshot Similarity)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
bc3ce141619ebd61 |
|
VISUAL
aHash
|
00ffffbf00ffffff |
|
VISUAL
dHash
|
92302028c0120016 |
|
VISUAL
wHash
|
00df9f0000ffffc0 |
|
VISUAL
colorHash
|
0e000038000 |
|
VISUAL
cropResistant
|
0812529696961202,3430383030282800,0000000000000096,00009080d0d98800,00c0c01004c0d800 |
Code Analysis
Risk Score
89/100
Threat Level
ALTO
⚠️ Phishing Confirmed
🎣 Credential Harvester
🎣 OTP Stealer
🔐 Credential Harvesting Forms
🔒 Obfuscation Detected
- fromCharCode
- unescape
- document.write
Similar Websites
Pages with identical visual appearance (based on perceptual hash)
Orange
http://notifmv33.clanweb.eu/nklm/?return_url=https%3A%2F%2Fw...
Ene 09, 2026
Orange
http://notifmv33.clanweb.eu/nklm/?return_url=https%3A%2F%2Fw...
Ene 09, 2026
Orange
https://notifmv33.clanweb.eu/nklm/?return_url=https%3A%2F%2F...
Ene 09, 2026
Orange
https://notifmv33.clanweb.eu/nklm/?return_url=https%3A%2F%2F...
Ene 09, 2026
Orange
https://notifmv33.clanweb.eu/nklm/?return_url=https%3A%2F%2F...
Ene 09, 2026
Scan History for notifmv33.clanweb.eu
Found 10 other scans for this domain
-
http://notifmv33.clanweb.eu/nklm/?return_url=https...
http://notifmv33.clanweb.eu/nklm/?return_url=https...
http://notifmv33.clanweb.eu/nklm/?return_url=https...
http://notifmv33.clanweb.eu/nklm/?return_url=https...
http://notifmv33.clanweb.eu/nklm/?return_url=https...
http://notifmv33.clanweb.eu/nklm/?return_url=https...
http://notifmv33.clanweb.eu/nklm/?return_url=https...
https://notifmv33.clanweb.eu/nklm/?return_url=http...
https://notifmv33.clanweb.eu/nklm/?return_url=http...
http://notifmv33.clanweb.eu/nklm/?return_url=https...