Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T17E817622F454492B4102C394ABE2770D915ED752CD5318FBF3E8815E8BC7EBCE96634A |
|
CONTENT
ssdeep
|
48:nc5RsZJ579mz2opHMQY4ZXFRWIj2Bdkso68c19G268XGIPCz38ofsI8FeUGbe9MZ:neKez1i4vj27Sc3W8XG6CI/bIUb4XX9 |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
f343cb3434ccdb30 |
|
VISUAL
aHash
|
00286cc3c3e7ffff |
|
VISUAL
dHash
|
4949c996968a4541 |
|
VISUAL
wHash
|
002028c2c3e7ffff |
|
VISUAL
colorHash
|
070000001c0 |
|
VISUAL
cropResistant
|
4949c996968a4541,2421d99626df5565 |
Victim enters banking credentials including account numbers and security questions. Attacker gains full access to victim's banking services.
Malicious code is obfuscated using 5 techniques to evade detection by security scanners and make reverse engineering more difficult.