Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T17432D92AF1443B37054300E5DFA586D97716828CEB670B40E3BEC35CA7D1E69CA6B2D5 |
|
CONTENT
ssdeep
|
192:N5L07JV+S9+zGGkHTgDQwiaQqV+PBCZ44FBFFoN+x9PJQSKdwP8:3O+S98BwTNwiaQqV++42B7oN+XPJuGU |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
833369346d9c866f |
|
VISUAL
aHash
|
30203c3c3c7e3c78 |
|
VISUAL
dHash
|
c4ccc4c4c4c4d4d3 |
|
VISUAL
wHash
|
30203c3c3e7e7e78 |
|
VISUAL
colorHash
|
180000001c0 |
|
VISUAL
cropResistant
|
c4ccc4c4c4c4d4d3 |
Victim is prompted for 2FA code after entering credentials. The code is intercepted and used by attacker to access victim's account in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.