Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1591161EDA0044C7B0523C4D8A45293E032C37A15EB024D441BF0CB6E379EFA4DD9A1C8 |
|
CONTENT
ssdeep
|
12:hRwMy7FUakLhT0pNJt7vWmT++amudmcLi7YpOoJDVbNdsRNMg0sVE7Se97TNpwJK:hR/COZwTjnVE5NNoCgjVE+eBIJK |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
b373cc8c815c4edc |
|
VISUAL
aHash
|
ffc7c0444fffffff |
|
VISUAL
dHash
|
899a9999d9c80000 |
|
VISUAL
wHash
|
6fc0c000006fffff |
|
VISUAL
colorHash
|
07203000000 |
|
VISUAL
cropResistant
|
899a9999d9c80000,e37059693909891a,697111199dc69b85,4541493133314d45 |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.