Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1203276A35144601E612B8ACB9E15AB6C32FB30BFE5FB0541FBED87C4DBAAC51ED05844 |
|
CONTENT
ssdeep
|
192:WC6U222aO5400UAAqRZ6sOTi9sTkRi+BShlOY4003AAqRZ6WWNcNlTOB8VMc:se0YRZ6C9sqE80BRZ63GlTgzc |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
92926d6d64929ee5 |
|
VISUAL
aHash
|
7e2c2e6c00180000 |
|
VISUAL
dHash
|
f4d8cdcdd970b270 |
|
VISUAL
wHash
|
ff7e7c6c003c1838 |
|
VISUAL
colorHash
|
31000038000 |
|
VISUAL
cropResistant
|
f080c7cb86c78b36,8e37796b277965f0,f4d8cdcdd970b270 |
• Threat: Cryptocurrency phishing scam
• Target: PenguJak token holders and community members
• Method: Fake airdrop website luring users to claim tokens
• Exfil: Potential data collection through obfuscated JavaScript
• Indicators: Recent domain, mismatched branding, urgent calls to action
• Risk: HIGH - Potential for credential and token theft
Pages with identical visual appearance (based on perceptual hash)
Found 2 other scans for this domain