Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T15BB1A82BB2147F32458301F26B7653F6A774D4A0A2751FA06BDDD29CA2D4E40DE672C3 |
|
CONTENT
ssdeep
|
96:TOA2FyFhsQnmDZsz23zFHbMu5OJsBNLwa0cyQNCc55Bi/4:WyfsMIF4sB+wyQNdiA |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
c7b26d4c366c7131 |
|
VISUAL
aHash
|
707c643c3c787830 |
|
VISUAL
dHash
|
c4c0c8ccccc0c2c0 |
|
VISUAL
wHash
|
707c647c3c787878 |
|
VISUAL
colorHash
|
38000240048 |
|
VISUAL
cropResistant
|
c4c0c8ccccc0c2c0 |
Victim enters username and password into fake login form. Credentials are captured via JavaScript and exfiltrated to attacker's server in real-time.
Victim enters banking credentials including account numbers and security questions. Attacker gains full access to victim's banking services.