Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1A9C271D68338D63FF446D3ACE795595072EE41DFB680C784A2E9CF2F49B05891C8D2A2 |
|
CONTENT
ssdeep
|
384:hsDy4EIko8ocIBBIT877XoRW8vmOYc0aWj/rQMUse6NwBZBY:hMy4EIko8ocI4O7XoRW8YakCse6NwHBY |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
c8bd37b09c2c3336 |
|
VISUAL
aHash
|
033c3c387c3c3000 |
|
VISUAL
dHash
|
9a70e9b2b0a9c441 |
|
VISUAL
wHash
|
0f7c3c387e7c3c10 |
|
VISUAL
colorHash
|
38600008002 |
|
VISUAL
cropResistant
|
9a70e9b2b0a9c441 |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.