Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1230230362194752B02A362DA6B32A74BB387C14ACF630B1636F0C75E5FD7D0ACD56389 |
|
CONTENT
ssdeep
|
96:T4xRS2apWbxgWMTYzQWy4mhXThGb9Ltefavj2CGNo7ZYj1o+igo98:8TSzo3M0ly4mhXTIj2CSo7iBoD8 |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
c431664b8e7f25b1 |
|
VISUAL
aHash
|
6060c3bc7cb8e070 |
|
VISUAL
dHash
|
c0849e60f86245e5 |
|
VISUAL
wHash
|
60e0c7bcfcb8f070 |
|
VISUAL
colorHash
|
39c00000000 |
|
VISUAL
cropResistant
|
c0849e60f86245e5 |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.