Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T18EE1A7B46045AE7701E783A0FA765B4BB2D4C281DF87170223F983998FD6E8BDC94652 |
|
CONTENT
ssdeep
|
96:TyfJXDjDBjy38Cyg+mWgAm85agzmnTgHmugbm8ZgumntgHRmPYglmIN+crTBIKXY:ORXty3815cNMlNN+c/uKZUBf |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
c04e4f339b1d7f80 |
|
VISUAL
aHash
|
00f0f0787f6f7f7f |
|
VISUAL
dHash
|
63e1e0e4dd9adad9 |
|
VISUAL
wHash
|
00f0f0007f636f7f |
|
VISUAL
colorHash
|
0e202018001 |
|
VISUAL
cropResistant
|
8282e26a6ae28282,e06060f1d0f092d0,ab9d15165696a553,63e1e0e4dd9adad9,94f44c4adc993224 |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.