Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1CD3255259040FB7F01679AF0B33A594367E4E6238E72861163F9420D6FD6EB4CB4D9A3 |
|
CONTENT
ssdeep
|
192:urI5OS3hg0RBzG73lg3603Jk7WOcnoGznLJNoY5:urIsue0rzclu6+PzL1 |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
b4c751cc71d6cd30 |
|
VISUAL
aHash
|
fee7e7e7c3fbc3c3 |
|
VISUAL
dHash
|
e24d4d8f96a2bf9f |
|
VISUAL
wHash
|
fee7e7e703131100 |
|
VISUAL
colorHash
|
07000008180 |
|
VISUAL
cropResistant
|
e24d4d8f96a2bf9f,9d8088899981a973 |
Victim enters banking credentials including account numbers and security questions. Attacker gains full access to victim's banking services.
Malicious code is obfuscated using 4 techniques to evade detection by security scanners and make reverse engineering more difficult.