https://mitra77.io
77.232.140.3 · Tech Soft Solution
Dubai, United Arab Emirates
—
200 · 93.4s
Valid· E7, Let's Encrypt, US
COMPLETED
No KB/IOK detections were recorded for this scan.
entertainment | technology | ecommerce · 7/19/2026
The page presents Mitra77 branding but is hosted on mitra77.io, which appears to be a slot/gambling site with login forms and credential capture UI. The static HTML shows a login form and password fields, multiple POST targets including /login, and external script loading from third-party domains, suggesting credential collection pathways. While the domain matches the brand name, visual branding and page title align with Mitra77, raising concern for credential harvesting rather than legitimate first-party content; however, the evidence confirms only impersonation signals if any brand is misrepresented, which is not clearly the case here. The evidence indicates potential user credential collection attempts rather than a confirmed phishing site impersonating a different brand.
Capture
Stages: 3
Canonical: Late Render (+3s)
Changed: No
Credential Signals
Forms: 4
Password fields: 2
Late-stage login UI: No
Resource Signals
Resources: 31
Hosts: 7
Domains: 7
Suspicious Endpoints
hxxps://mitra77[.]io/login
hxxps://mitra77[.]io/
The site mitra77.io presents Mitra77 branding and includes a login form with a password field and multiple POST endpoints, which could indicate credential harvesting. The presence of off-domain analytics and third-party scripts along with a new certificate suggests typical phishing-ready infrastructure, though the page itself appears to be a legitimate Mitra77 gambling/slot site rather than an impersonation of a different brand. The combination of a public login surface, password input, and external script loading warrants cautious handling as potential credential harvesting activity. Recommend monitoring and further verification of domain-brand alignment and backend handling of credentials.
Monitor