Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1201152955481987BE20AE8E84773731CB29DC713CB830F485AF0D1E8D3C1ECDC902290 |
|
CONTENT
ssdeep
|
24:haT0/uz0V/KmK3YVhWjXNRk2NHD+iukO2m:B/6siv3Y6s2k0OT |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
903f2d3c19595b5c |
|
VISUAL
aHash
|
00ff7e7e7e7e7e7e |
|
VISUAL
dHash
|
324eccd0dcc4d4d4 |
|
VISUAL
wHash
|
00006e7e7e567e7c |
|
VISUAL
colorHash
|
07007000080 |
|
VISUAL
cropResistant
|
324eccd0dcc4d4d4,048484848c848484 |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.
Found 3 other scans for this domain