Detailed analysis of captured phishing page
No screenshot available
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1E07184719294743E09C5C3ECB7A17F2B27C28195E742082993EACB2E8FD6E50DC01DE9 |
|
CONTENT
ssdeep
|
48:GjPCeNmTNMgEMFIiGy5a9O/qIXmQJIkQSqyBhor9ak1vsQ9GEjCsJRp7ic1dqQr:GjiERlynmQKyzKE3sfBqK |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
d71a5d2a772a5522 |
|
VISUAL
aHash
|
00fffffffffffffe |
|
VISUAL
dHash
|
28004d686810010e |
|
VISUAL
wHash
|
001c2737e7cbddc4 |
|
VISUAL
colorHash
|
07000038040 |
|
VISUAL
cropResistant
|
309964694810010e,00000288988c4208 |
• Threat: No immediate threat detected, possibly a legitimate payment page.
• Target: Aruba.it customers.
• Method: Payment for domain renewal.
• Exfil: No data exfiltration detected.
• Indicators: No phishing indicators found.
• Risk: LOW - The page appears to be legitimate, but domain is unrelated to Aruba Legal, and is being used to display a page from Aruba.it, which is suspicious and COULD be used to mislead the user.
Pages with identical visual appearance (based on perceptual hash)
Found 7 other scans for this domain