Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1465231631350E736066383D5BB6633F9DAC22849E7520EBA73FDC79D4698D00AC5364B |
|
CONTENT
ssdeep
|
192:iorgKD+BixmB+etdJKxx/35QGGv8KGUwIkBT9n:1mBT+e3JKSGGv8KGR1V |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
ad29c3c6ce716938 |
|
VISUAL
aHash
|
fbfb83c393f3c7c3 |
|
VISUAL
dHash
|
3293173723279e1f |
|
VISUAL
wHash
|
dbfb818191d3c3c1 |
|
VISUAL
colorHash
|
07002210000 |
|
VISUAL
cropResistant
|
3293173723279e1f,a2b3956b49ab9795 |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.