Detailed analysis of captured phishing page
No screenshot available
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1922362733440497B02D785C66A75BB1EF3DAD249CA9B1A42D2FC835D07D3E80CE32A62 |
|
CONTENT
ssdeep
|
768:flG9B+SyP+IsRxbiW536Fj7Byuq8r8jQ63j:My+Is3i46lByupryQc |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
920ced32d62c69f6 |
|
VISUAL
aHash
|
0000003c2404ffff |
|
VISUAL
dHash
|
7e72f1e84cdcac23 |
|
VISUAL
wHash
|
0000083e2e7effff |
|
VISUAL
colorHash
|
06e00000000 |
|
VISUAL
cropResistant
|
ac6864c1c9d1c6e6,eeccf6f87cf66fff,8880aaf0b8b00080,bdf26a6531f3c993,880151202a0b2324,4e32f1f1e86c4cdc |
• Threat: Phishing
• Target: Users seeking financial knowledge/services
• Method: Deceptive website with registration form
• Exfil: User data (name, email, etc.)
• Indicators: Unrelated domain, forms, obfuscation, financial content
• Risk: High
The website uses a deceptive domain and content related to financial services to lure users into providing their personal information through a registration form. This data can be used for subsequent phishing attacks or spam campaigns.
Pages with identical visual appearance (based on perceptual hash)