Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T10BF0D475A182547D4593C2846AD6A71C93D08598E74F07406DF9A3EC4DFAE14C8C610C |
|
CONTENT
ssdeep
|
6:h4hq8wgYlfAbpli7FUQk2JtYwFxftP5AnBuHl8uwrRezXsC0MlAA94bKVvSEOvSz:hNMy7FUuWwF5t4BuWrRuXfj94b03t |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
8867725ccd73668c |
|
VISUAL
aHash
|
01030b1f1f1f0f1f |
|
VISUAL
dHash
|
fffff7f3b3f7ffff |
|
VISUAL
wHash
|
01030f1f1f1f1f1f |
|
VISUAL
colorHash
|
08007000000 |
|
VISUAL
cropResistant
|
fffff7f3b3f7ffff |
Generic phishing page with unclear attack methodology. May use social engineering, brand impersonation, or other tactics to deceive victims.
Malicious code is obfuscated using 2 techniques to evade detection by security scanners and make reverse engineering more difficult.