Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T114E11FB09095B97B6186C2C007B15B6FB3D7A768CE934B8AC7F5D39D6B8BC91DC02109 |
|
CONTENT
ssdeep
|
96:P7LWwu5KrNUmmx/RS8zBN6ni1kX8Y540al325czpxxFDJ:jZuQ5UmmxgO/1YRW3KAxFDJ |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
b0cd3232cfd33493 |
|
VISUAL
aHash
|
ffffffffc7878787 |
|
VISUAL
dHash
|
8ab2bab32f0e0d2d |
|
VISUAL
wHash
|
c1c3dbdb83838387 |
|
VISUAL
colorHash
|
06000000e00 |
|
VISUAL
cropResistant
|
8ab2bab32f0e0d2d,f0323323232323d8,4949c9e9f878e8f8 |
Victim is prompted for 2FA code after entering credentials. The code is intercepted and used by attacker to access victim's account in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.
Pages with identical visual appearance (based on perceptual hash)