Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T12F439674122115BF26CBDAF1F2317FB6E1E5C2CAC617C99AA3F886666FCEC558C01250 |
|
CONTENT
ssdeep
|
768:RYqYy2TTA/URhv1wxg1XE1SjqgPiUnoIquK:Lj/u0zb |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
92e9e892ac92e99e |
|
VISUAL
aHash
|
ff0020262e662e00 |
|
VISUAL
dHash
|
aba3c3cccccccc33 |
|
VISUAL
wHash
|
ff00607e6e7e6e00 |
|
VISUAL
colorHash
|
38008038000 |
|
VISUAL
cropResistant
|
00304c4d4d4c3008,9294929391169492,8000e03031808081,b2cdcdb2b2cdcdb2,bbc5c3cccccccc33 |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.