Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T148E29E759051BB2752EBC1CA9A327707F2829349CA2F1A46B7F4878C4EDBDC5CCA9311 |
|
CONTENT
ssdeep
|
384:aWWXMny4xq98SCxJQbizSlHVeBywxUbMS+xvuWvk:ajSgJC0bizSroCn+8Wvk |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
92966d69939694e5 |
|
VISUAL
aHash
|
02006e2e66000018 |
|
VISUAL
dHash
|
36d6cccccc8230b0 |
|
VISUAL
wHash
|
12e07e7e6ee0a0f8 |
|
VISUAL
colorHash
|
380000001c0 |
|
VISUAL
cropResistant
|
36d6cccccc8230b0 |
Victim is prompted for 2FA code after entering credentials. The code is intercepted and used by attacker to access victim's account in real-time.
Victim enters credit/debit card details including CVV and expiration. Card data is captured and can be used for fraudulent transactions or sold on dark web markets.