Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1DFF167E8B84629A707F7D0E4D4253F1FA192F30AD20A1640D9A8C29E9FC6D73771917B |
|
CONTENT
ssdeep
|
192:eIwQBqBQ6o6Td548ezWrMqr4rB65rvUltpmlJzh:C/o6n4WMqroB65vsvelh |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
8b78cd49011e377e |
|
VISUAL
aHash
|
00ffff0f00ffffff |
|
VISUAL
dHash
|
63002cfdd1e1e0f1 |
|
VISUAL
wHash
|
00ff8f00007f3f3f |
|
VISUAL
colorHash
|
06001030000 |
|
VISUAL
cropResistant
|
730028fd51e8e0f0,0008303434242000 |
• Amenaza: Phishing
• Objetivo: Clientes de Amazon
• Método: Cebo de encuesta
• Exfil: Potencialmente información personal ingresada en páginas subsiguientes.
• Indicadores: Discordancia de dominio, urgencia, tácticas de recompensa, ofuscación de JavaScript.
• Riesgo: Alto
The attacker lures victims with the promise of an Amazon gift card through a survey, using the Amazon brand. The survey format is a disguise to collect the personal details on later pages.
Obfuscation hides malicious code, making it difficult to analyze. The code could be used to phish login credentials or to track the user.
Found 3 other scans for this domain