Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T139C2D83D2080F9EB0113B6F11BEB8B4B95D4F6A9D8132B40BA7085AC17E6C6FBD54462 |
|
CONTENT
ssdeep
|
768:Rv9W79lHw20+O0wHuZkzE9RbHLF6BWRJSRnzQ4:RYlQh0o4kzEbGnU4 |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
e94949aaa3a32b4f |
|
VISUAL
aHash
|
000000ffffffffff |
|
VISUAL
dHash
|
1330300c0c2a2b2a |
|
VISUAL
wHash
|
000000e7e7dbdbff |
|
VISUAL
colorHash
|
070000001c0 |
|
VISUAL
cropResistant
|
1330300c0c2a2b2a,c0f0b8921ab8d0c0,3046c6b2b6a6b60b,0000a4c594941000,40d4808a8292c0c0,030360c080484810 |
Fake imToken page designed to appear in search results and trick users into visiting. May redirect to credential harvesting pages, malware downloads, or serve as a trust-building step before requesting sensitive information.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.