Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1E004B6E1A0406B7F425F87C99BA1FEDCB3EA105EFA940856C3E8439452D3CD4EEAB544 |
|
CONTENT
ssdeep
|
1536:Zaohan2Lm3ejR4BraX42u5Bfu7BfV3tlk4ET/oCaYszVwcSzuB6ZBFB7ByBS:ZaohansYNszVdBUBFB7ByBS |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
9849673665671e9c |
|
VISUAL
aHash
|
001c3c3c1c1c3c00 |
|
VISUAL
dHash
|
1771713331296916 |
|
VISUAL
wHash
|
003c7e3c3c3e7e4a |
|
VISUAL
colorHash
|
07200000180 |
|
VISUAL
cropResistant
|
62329a22b2aa332b,1771713331296916 |
• Threat: Cookie consent phishing
• Target: Le Monde users
• Method: Fake cookie consent popup stealing user data
• Exfil: Data sent to unknown server
• Indicators: Domain mismatch, recent domain, obfuscated JavaScript
• Risk: HIGH - Potential data theft
Pages with identical visual appearance (based on perceptual hash)
Found 2 other scans for this domain