Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T16622A95151AD28EA0201F81BDD187E097DEA04FE7FA7579615A82CFE3AF2034CB3951A |
|
CONTENT
ssdeep
|
192:fvqg2NpNkJ48D3XhciAIUgK8B13i/b8s9+muIY9PgWYt1C:fLupNk/Bv9VKs3ij8j6dG |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
cecfc631cc343332 |
|
VISUAL
aHash
|
383c30383c043030 |
|
VISUAL
dHash
|
6060686020086060 |
|
VISUAL
wHash
|
fcfc303c3c3c3038 |
|
VISUAL
colorHash
|
38018000c00 |
|
VISUAL
cropResistant
|
6060686020086060 |
Generic phishing page with unclear attack methodology. May use social engineering, brand impersonation, or other tactics to deceive victims.
Malicious code is obfuscated using 2 techniques to evade detection by security scanners and make reverse engineering more difficult.