EN ES PT

Phishing Analysis

Detailed analysis of captured phishing page

Back to Stats
100 Risk Score

High Risk

Threat Level: ALTO • Impersonating: Pluxee

⚠ Risk Factors

  • Brand impersonation of Pluxee on non-official domain
  • Contains 3 form(s) with JavaScript submission
  • JavaScript obfuscation detected (7 patterns)
  • Credential harvesting indicators detected
  • OTP/2FA stealing indicators detected

Visual Capture

Screenshot of 49930514000135-dot-default-dot-sodexo-bf-front.appspot.com

Detection Info

https://49930514000135-dot-default-dot-sodexo-bf-front.appspot.com/login
Detected Brand
Pluxee
Country
International
Confidence
100%
HTTP Status
200
Report ID
fc24cc7b-b43…
Analyzed
2026-01-09 21:42

Content Hashes (HTML Similarity)

Used to detect similar phishing pages based on HTML content

Algorithm Hash Value
CONTENT TLSH
T1DD712D3044049D3B0183DAD4FBB9A70BA6C2C34AC613665AA3FC879D1FDBD56CC56662
CONTENT ssdeep
48:hJ+C7T5IwcwrQW6wKWPTYQFGBjPnbObfXO79aP54URz/hYy11rHCgF:ufw9U2fXh99/OynHCgF

Visual Hashes (Screenshot Similarity)

Used to detect visually similar phishing pages based on screenshots

Algorithm Hash Value
VISUAL pHash
b93107078f0f1f17
VISUAL aHash
3ecfcff9ffffffff
VISUAL dHash
761f9a2b40000080
VISUAL wHash
02808080f0f0ff7f
VISUAL colorHash
07002600200
VISUAL cropResistant
761f9a2b40000080,414555cdc91b4b4b

Code Analysis

Risk Score 100/100
Threat Level ALTO
⚠️ Phishing Confirmed
🎣 Credential Harvester 🎣 OTP Stealer 🎣 Banking 🎣 Personal Info

🔐 Credential Harvesting Forms

🔒 Obfuscation Detected

  • atob
  • eval
  • fromCharCode
  • unescape
  • hex_escape
  • unicode_escape
  • base64_strings