Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T16DF19578C14CDA6B5A82C3ACAF773669914E42C5C2864334D2F4CB356AE3DC5FC1D8A9 |
|
CONTENT
ssdeep
|
192:tky+Qhsz6ONP8iZagiwRnonB3D+h0SMBL1:Cjz6Ol8WE2onk9A1 |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
edb61669960e4996 |
|
VISUAL
aHash
|
ffe7ffffff000000 |
|
VISUAL
dHash
|
290c040500132332 |
|
VISUAL
wHash
|
9ce7ffe7ff000000 |
|
VISUAL
colorHash
|
07007000000 |
|
VISUAL
cropResistant
|
290c040500132332 |
Fake Salik site positioned to capture victims through SEO tactics, typosquatting, or paid advertising. Serves as entry point for multi-stage attacks including credential theft and malware distribution.
Malicious code is obfuscated using 2 techniques to evade detection by security scanners and make reverse engineering more difficult.