Detailed analysis of captured phishing page
No screenshot available
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T16CC2DA70215306E663BBC9E4B3597F2578D5E3EBC44B80C8A5B550788FC7EBCAB09560 |
|
CONTENT
ssdeep
|
384:mxXhPh1VljnIykz+o2vQ/F1k2cKvXjcW1+9hT0fbJ:eXhp1VpIyk+o2ve1k2cK/j5o9E1 |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
fbc1d48cc78e90a5 |
|
VISUAL
aHash
|
ffc9c5e1a3858181 |
|
VISUAL
dHash
|
671b19494f1d1d5d |
|
VISUAL
wHash
|
ffcbc1e1e3858181 |
|
VISUAL
colorHash
|
07600008000 |
|
VISUAL
cropResistant
|
671b19494f1d1d5d,6b7a5cdcc9899892,0f3f6ecf9b31e164,8e156c654b2acbcf,b57c783870073f78,b02b6765714e59f3,4e430d2643419080 |
• Threat: Potential data exfiltration
• Target: Bancolombia website users
• Method: JavaScript may submit form data to an external source
• Exfil: Unknown target, potentially a custom API
• Indicators: Recent domain, JavaScript form submission, Obfuscation
• Risk: LOW - The JavaScript's activity could be malicious, warranting further investigation. However, it may also be legitimate.
Pages with identical visual appearance (based on perceptual hash)