Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T12603D7B571EBEC7B026F01EA7265BB5E31A0DE86CC1F474582F5866E46E2CD9BC01C09 |
|
CONTENT
ssdeep
|
768:hveZ5j3+ue/KAf1KmaaoZIP3yJkNfCXWsN4IUV5asySTkoXFBKHHE6Cb/ZQg3:ZeZ5jo/KAf1taa5yJ0fC25oSTkoXDKH8 |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
c3b889b4d1c78cc7 |
|
VISUAL
aHash
|
ff007d6064003078 |
|
VISUAL
dHash
|
d129c1cdcc2cc2d2 |
|
VISUAL
wHash
|
ff0d7d34e6007078 |
|
VISUAL
colorHash
|
38000200030 |
|
VISUAL
cropResistant
|
d129c1cdcc2cc2d2 |
Fake Ledger site positioned to capture victims through SEO tactics, typosquatting, or paid advertising. Serves as entry point for multi-stage attacks including credential theft and malware distribution.
Malicious code is obfuscated using 17 techniques to evade detection by security scanners and make reverse engineering more difficult.