Detailed analysis of captured phishing page
No screenshot available
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T19D3233324C9AE9BB109782E1D677EB2EE2C15664C335CE09A3F986CE5F85F5CCE12441 |
|
CONTENT
ssdeep
|
96:xFAJHECvNivXJ59nk7gKpTTy54an/UEYXkVTY8Lg7zV99FAajvT5ud1GBaRhEYNW:0JHjRg8L0TY8Lg/FTQQIRhpzKANC3B |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
ece943929238e1ed |
|
VISUAL
aHash
|
fffffbffff000000 |
|
VISUAL
dHash
|
092312372452f0d4 |
|
VISUAL
wHash
|
edffc3dfdf000000 |
|
VISUAL
colorHash
|
070020001c0 |
|
VISUAL
cropResistant
|
092922131f372643,0c30b2b24cb69609,8292809696969680,08103060d4d4d4d4 |
• Threat: No immediate threat detected
• Target: imToken users
• Method: Legitimate business website
• Exfil: No data exfiltration detected
• Indicators: Domain contains part of the brand name, complete business website
• Risk: LOW - Legitimate website
Pages with identical visual appearance (based on perceptual hash)