Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T11711767074839837429287E4AAF3A60EB682F245CAE3A74247E8C3DC1ED1E96CC1B144 |
|
CONTENT
ssdeep
|
24:hR/CoaxArmuE3MNC4mUNGFIm52gxZTpAC:ToP3MMKNiIm520ZTx |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
99996c66929339cd |
|
VISUAL
aHash
|
1818183c3c000000 |
|
VISUAL
dHash
|
3232706970080000 |
|
VISUAL
wHash
|
1c3c7e7e7e1c0000 |
|
VISUAL
colorHash
|
38006000000 |
|
VISUAL
cropResistant
|
3232706970080000 |
Victim is prompted for 2FA code after entering credentials. The code is intercepted and used by attacker to access victim's account in real-time.
Malicious code is obfuscated using 20 techniques to evade detection by security scanners and make reverse engineering more difficult.