Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1A991DF762049A52B029363D97B316B1A77C3C256CF8B0F1421E6C75FAFE2D09CC56297 |
|
CONTENT
ssdeep
|
48:nYc7xTr5SIMcuYNlIntNzcrCj56TN8VGKmpgSkD0ftNhyuKWPoXi4Y0ozwM0AGoG:n9LSIYYST4k0T6Vhmih0fTNmyJhfw |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
d875778c97608c33 |
|
VISUAL
aHash
|
1880c03c3f39418e |
|
VISUAL
dHash
|
305292b0f1b1953c |
|
VISUAL
wHash
|
98c8c8fc1f3d418f |
• Threat: Credential harvesting phishing kit
• Target: Netflix users
• Method: Fake login form stealing email address
• Exfil: Unknown, likely to a malicious server
• Indicators: Free hosting, brand impersonation, domain mismatch
• Risk: HIGH - Immediate credential theft
Pages with identical visual appearance (based on perceptual hash)
Found 2 other scans for this domain