Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T17542AEB0A102DC3745F3D1E291B96B1F71F28245DD83270263FE939D6BD6CA4EE0256A |
|
CONTENT
ssdeep
|
192:3k7HKKTqT1hWQamxnmgGcWWJWGi2Ox9RekXgVJ2bVeRM0SiNRx74KVshnN7yZuNp:U7HvTqTzWQamxnmgGXwWGi2Ox9RekQX4 |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
cc64329bdcccce31 |
|
VISUAL
aHash
|
8000383c183c0000 |
|
VISUAL
dHash
|
2294607032691608 |
|
VISUAL
wHash
|
ff20bebc1e3c3c00 |
|
VISUAL
colorHash
|
38000e80000 |
|
VISUAL
cropResistant
|
2294607032691608 |
Fake Deutsche Bank page designed to appear in search results and trick users into visiting. May redirect to credential harvesting pages, malware downloads, or serve as a trust-building step before requesting sensitive information.
Malicious code is obfuscated using 2 techniques to evade detection by security scanners and make reverse engineering more difficult.