Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1A511446090424EAB0253D6E0B347F73A76C08692D983270856F5C36D1FD6F0ECD2A3C5 |
|
CONTENT
ssdeep
|
24:hR/NM5OGOkC9cYGbwGDukdNy7B9aAxVE+9R+TCCO:TmwkoxwwGDg9x0TCf |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
b831c7067b963479 |
|
VISUAL
aHash
|
ffffcf89891fffff |
|
VISUAL
dHash
|
8093143333b0d000 |
|
VISUAL
wHash
|
7f4b898909090fef |
|
VISUAL
colorHash
|
07200048040 |
|
VISUAL
cropResistant
|
8093143333b0d000,c7490b5ec0c51719,000832b2b2321400 |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.