Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T131C174301010EE770181D5D4F7E86B0F74C7C285CB5A634067FA879F6ADAD86DE2EAA1 |
|
CONTENT
ssdeep
|
96:nW6/gPRDtJX4yMauC9CvQUvb7oPWj857SJXcxMeSD:t/gPRD/T5UnjCxmD |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
8fe0fc0ee01d833b |
|
VISUAL
aHash
|
fffc3e7f3d1f1fff |
|
VISUAL
dHash
|
800040c0d9707034 |
|
VISUAL
wHash
|
fff03030181c1edf |
|
VISUAL
colorHash
|
07401018000 |
|
VISUAL
cropResistant
|
800040c0d9707034,9a9a9e9c9d152519 |
• Threat: Credential harvesting phishing kit
• Target: Adobe users in Brazil
• Method: Fake login form stealing email
• Exfil: Data sent to unknown server
• Indicators: Domain mismatch, forms detected, obfuscated JavaScript
• Risk: HIGH - Immediate credential theft
Pages with identical visual appearance (based on perceptual hash)
Found 1 other scan for this domain