Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1DA04B7E160406B7F425F87C99AA1FFDCB3E6105EFA990856C3E8839452D3CD0EEAB544 |
|
CONTENT
ssdeep
|
1536:CaohannLKXejR4BraX42u5xUusdheNM8HlX7uIeLQB6ZBFB7ByBS:Caohan9ngBUBFB7ByBS |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
9849673634671edc |
|
VISUAL
aHash
|
001c3c3c3c3c3c00 |
|
VISUAL
dHash
|
177171733129699c |
|
VISUAL
wHash
|
003c7e3c3e3e7e06 |
|
VISUAL
colorHash
|
072010001c0 |
|
VISUAL
cropResistant
|
62329a22b2aa332b,177171733129699c |
• Threat: Phishing attempt impersonating Le Monde
• Target: Users of Le Monde in France
• Method: Fake cookie consent popup to deceive users
• Exfil: Potential data exfiltration through obfuscated JavaScript
• Indicators: Domain mismatch, recent domain, obfuscation
• Risk: HIGH - Potential for data theft and misuse
Pages with identical visual appearance (based on perceptual hash)
Found 3 other scans for this domain