Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T159513EB500445F3F4752C2D46A617A7DB6C3D283FDC20A08F1E54A5A9F83F96CC1249B |
|
CONTENT
ssdeep
|
48:TXmbQxwGyB3EjJCHE5WrF05mPCBB+s3+MOCpAtorQ+LX5:Tv8EjJn5kwmHlmv5 |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
98c3c73c5ac33c3c |
|
VISUAL
aHash
|
ffff9b98999dffff |
|
VISUAL
dHash
|
2041333131310021 |
|
VISUAL
wHash
|
f8f898989898f8f8 |
|
VISUAL
colorHash
|
07600000080 |
|
VISUAL
cropResistant
|
2041333131310021,0000283232300851 |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.