Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1CC61FA0BD36973254287033DF766E3EDD5154448A30A0F9EA2B9422F71D16D9C33B9EA |
|
CONTENT
ssdeep
|
48:TMq3X4wr93/hWT58y1jVWMR785GFdbusIfrY4xXGWxN+6Yd4Q7P:TMqX4wr93pOQM81fxXGWxNBYPP |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
90070f3ffcf1c503 |
|
VISUAL
aHash
|
00003effffffffff |
|
VISUAL
dHash
|
fff9f43e9cb498bc |
|
VISUAL
wHash
|
000000cfcfdfcfdf |
|
VISUAL
colorHash
|
070000001c0 |
|
VISUAL
cropResistant
|
d436be9eb6b898b4,fffff9f9fb73f4c0 |
Victim is prompted for 2FA code after entering credentials. The code is intercepted and used by attacker to access victim's account in real-time.
Uses typical phishing tactics including brand impersonation, urgency tactics, and social engineering to trick victims into providing sensitive information.