Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T19E93A5293DB33171456FF13F8B9B604CA2314097590AE8543CAE43842FA2B6466FEFD9 |
|
CONTENT
ssdeep
|
1536:P2gUzEdFdZ+eJ4k7qESI2H3tfh2yEaTpuYg6XBXeLu9Q1S5mwvyuF:DUzEdFQcYt3h9 |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
de9c73102738253f |
|
VISUAL
aHash
|
98bcbc3c3c7cf8a0 |
|
VISUAL
dHash
|
3038316868a02949 |
|
VISUAL
wHash
|
18bcbc3c3c7cf8a0 |
|
VISUAL
colorHash
|
0fc00018000 |
|
VISUAL
cropResistant
|
3cdcdc9909e9ddde,bc3438b6f4d43464,3038316868a02949,8b8b8383838387e7 |
• Threat: Adobe PDF phishing designed to harvest user credentials.
• Target: Users expecting a legitimate Adobe PDF verification process.
• Method: A fake login page is presented to steal usernames and passwords.
• Exfil: Credentials likely sent to a malicious server.
• Indicators: URL domain mismatch, asking for login details unnecessarily, lacks genuine branding.
• Risk: HIGH - Immediate risk of credential theft.
Pages with identical visual appearance (based on perceptual hash)
Found 3 other scans for this domain