Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1A7B11B762182717B0AD360F2B736A75AB3C2C256C6530B4052FDD3ED0FC9C4AED66289 |
|
CONTENT
ssdeep
|
96:T4xpWPHzmjg/WPFSv5VuJZQO/j2UGNiokYsB:AYPrQG5VMZ5/j2USi/Y+ |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
c69c973039973c69 |
|
VISUAL
aHash
|
3e7e3e3c48343420 |
|
VISUAL
dHash
|
dce0d4d4d0e4ccc8 |
|
VISUAL
wHash
|
3e7e7e7c501c3c20 |
|
VISUAL
colorHash
|
39600008000 |
|
VISUAL
cropResistant
|
92928e8cb6260e6e,dce0d4d4d0e4ccc8 |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.