Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1104132706042ED6708F1B3D65336673FA2C942E3CA270A5292E99BCE5BD1C8CDC5F409 |
|
CONTENT
ssdeep
|
24:hrUsOQ/CXEODC6C6CowjW6nwjQ6X9wj+6HwjS60wjmN6/wjFDu676MNEjjwc1WBq:tPP/E36N6XD6l6ON6oDu6EfzoB36 |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
9c3671d9639ec861 |
|
VISUAL
aHash
|
003c3434183c3c00 |
|
VISUAL
dHash
|
f0e4e4ecb2b0b0cc |
|
VISUAL
wHash
|
3c7e7e7e183c3c00 |
|
VISUAL
colorHash
|
30007000000 |
|
VISUAL
cropResistant
|
88292befefe489ac,88aa2be6cfe52988,f0e4e4ecb2b0b0cc |
Generic phishing page with unclear attack methodology. May use social engineering, brand impersonation, or other tactics to deceive victims.
Malicious code is obfuscated using 1 techniques to evade detection by security scanners and make reverse engineering more difficult.
Pages with identical visual appearance (based on perceptual hash)