Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1C6E1666095D5C83705E386D1A5F56B3A92C50268CF830A14EAF883799ECFDD5FC274B8 |
|
CONTENT
ssdeep
|
96:lusO+DzRy6MaInpT82Ph2ZpVIlq2tzsG66rTyPpLfUHsiq6RaS9Q+0zLz:Q+MLLpT82oVAN6GTe4HQzz |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
a33399ce66236666 |
|
VISUAL
aHash
|
e7ffe7e7e7e7ffff |
|
VISUAL
dHash
|
4c324d4c4c4c0800 |
|
VISUAL
wHash
|
e0f8e0e0c0c0f0f0 |
|
VISUAL
colorHash
|
07000007000 |
|
VISUAL
cropResistant
|
4c324d4c4c4c0800 |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.