Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T12EE1743264C6693B02E392D5BB754B1BF3828109DA4F1B1865F9D3DD2FE3D16CC4A245 |
|
CONTENT
ssdeep
|
96:TwrHL5jNC21KcI2NOA9mz00i8utHD3frwXjMOnfdCEGntVIj9kZp0vDPG:sfKA9mz0ESjfszMVD2G |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
c6d267343198ced6 |
|
VISUAL
aHash
|
24f4fcff06000030 |
|
VISUAL
dHash
|
cc44619bae64c8c4 |
|
VISUAL
wHash
|
64f6ffffe6000030 |
|
VISUAL
colorHash
|
30600010000 |
|
VISUAL
cropResistant
|
cc44619bae64c8c4 |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.