Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T17051457641CDF27B1242CEC0CA72B73DD18B00D9EE526A8696F606CDD94CFA2C40B599 |
|
CONTENT
ssdeep
|
48:T+fsHb9Qb/WpoCN0QQDhDLDzx40ZzdjD8IFmf:KI9Qpp3XS+zdMI8 |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
ce6c31933333cc6c |
|
VISUAL
aHash
|
0018183c3c3c1800 |
|
VISUAL
dHash
|
0c32326969697004 |
|
VISUAL
wHash
|
08183c3c3c3c3c00 |
|
VISUAL
colorHash
|
07000000e00 |
|
VISUAL
cropResistant
|
0c32326969697004 |
Fake Bet365 site positioned to capture victims through SEO tactics, typosquatting, or paid advertising. Serves as entry point for multi-stage attacks including credential theft and malware distribution.
Malicious code is obfuscated using 2 techniques to evade detection by security scanners and make reverse engineering more difficult.
Pages with identical visual appearance (based on perceptual hash)