Detailed analysis of captured phishing page
No screenshot available
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T187A57BE93291B06A17A36174807F510BF23E6C45A80CC058F699DCDA3DA8D8E52B7F7D |
|
CONTENT
ssdeep
|
49152:+YCMYSMEZc1sOj1+yn0/ubar7doM3NCoJnwfe7s1+TM/QssvKoZc4bUqIw/w1MWh:+WMEPObWjbdjla |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
f73719080a227777 |
|
VISUAL
aHash
|
00ffe6ffffffffff |
|
VISUAL
dHash
|
fb100c0c00000001 |
|
VISUAL
wHash
|
00c2c6e7ffff0000 |
• Threat: Informational message, possibly legitimate.
• Target: CSS health insurance customers.
• Method: Notification about a refund of CHF 376.00.
• Exfil: No data exfiltration detected.
• Indicators: Appears to be a legitimate message from CSS.
• Risk: LOW - Standard notification; no immediate threat.
Pages with identical visual appearance (based on perceptual hash)
Found 1 other scan for this domain