Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1D3C1761F93C6B3140A87123ABF9743DEB7314095E1190A8875B8413EA7B1AE9C23AD97 |
|
CONTENT
ssdeep
|
96:TSVXc3C1BuEzZFRa9klOcpc9z0Z6keKs/1x26v2n/My+eqxaWW:2csJp1Z6jKsP26v2/MneqMWW |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
b80e0f1b1c30e7f9 |
|
VISUAL
aHash
|
0000ffcfdfffefff |
|
VISUAL
dHash
|
fbf91496909c9c98 |
|
VISUAL
wHash
|
0000c3c3cfcfcfcf |
|
VISUAL
colorHash
|
06e00000000 |
|
VISUAL
cropResistant
|
fbf91496909c9c98 |
Victim is prompted for 2FA code after entering credentials. The code is intercepted and used by attacker to access victim's account in real-time.
Victim enters banking credentials including account numbers and security questions. Attacker gains full access to victim's banking services.