Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1B021753F915615050027246097C3E51A6B84D396C74F8F1092E9A3BF7BC9C55DE773C8 |
|
CONTENT
ssdeep
|
24:hnCwMrtX6EBZNa7qgai8ZyA5ako/pcr7fs0RKHUTazsDPNjyZQYq:oJ6OZcNl5k4pGjRKHUTCsDPoQT |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
b2c91c33b38ed863 |
|
VISUAL
aHash
|
fffbf9efc7878787 |
|
VISUAL
dHash
|
8403031c0d0d2d0d |
|
VISUAL
wHash
|
7ff0f04687878383 |
|
VISUAL
colorHash
|
07203000000 |
|
VISUAL
cropResistant
|
8403031c0d0d2d0d,3c7c37190e618326,0f17393977362c1e,4c66d2c94c65276e,3c3c19535efd7d7d,e86233339b8d978e,7afa5acfe7f7e3e3 |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.