Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T17824520AD2C82F3BF61202CCD3A37F6366D948CF8B5435056C61543B19F38AD5AABB95 |
|
CONTENT
ssdeep
|
6144:AKM6VvMcgFEibouARnHJ4/7ly8Rch59itVnpoUPk6/+j8IQkm7vh1jXJtQG8X3aM:H |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
ae3e91c0ced1913e |
|
VISUAL
aHash
|
ff81839181ffffff |
|
VISUAL
dHash
|
21371f2327d260b3 |
|
VISUAL
wHash
|
9f81818181fbffc1 |
|
VISUAL
colorHash
|
06000018280 |
|
VISUAL
cropResistant
|
21371f2327d260b3,008800aa8a120602,019181a6a6060606,008080d292060400,0090a0e969070300,01c181e262040606,00c0088862020206 |
Victim is prompted for 2FA code after entering credentials. The code is intercepted and used by attacker to access victim's account in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.
Pages with identical visual appearance (based on perceptual hash)