Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T166439A73824452BB1B1F53CCE929F75CA253084FCF649ECEE2D6834F64C46E54A2698B |
|
CONTENT
ssdeep
|
768:hvOczkcZob+emlUcuXwzt53rCzhArySGCxCAU6O86I7VcOvfGM:UcZob+emlUcuXwztBRmJI7VcOR |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
9212bded4db29247 |
|
VISUAL
aHash
|
0000040000ffffff |
|
VISUAL
dHash
|
f8f8cce9e0c80848 |
|
VISUAL
wHash
|
040c2c1400ffffff |
|
VISUAL
colorHash
|
0b000000038 |
|
VISUAL
cropResistant
|
174f69abeedaf8b8,bff9ffd819591919,e008480808080808,f8f8f8ccece9e0e0 |
• Threat: Phishing site impersonating Ledger Live
• Target: Ledger hardware wallet users
• Method: Fake website mimicking official Ledger Live app
• Exfil: Potential data exfiltration through obfuscated JavaScript
• Indicators: Non-official domain, brand impersonation, JavaScript obfuscation
• Risk: HIGH - Potential theft of cryptocurrency credentials
Pages with identical visual appearance (based on perceptual hash)