Detailed analysis of captured phishing page
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1ED919326825973350756025DFB3193EEE32204C4D6220BCE66E9811EB7F6696CD3BDCA |
|
CONTENT
ssdeep
|
96:TLuPc4SqsrCVT0RrC/zt1NpJbYy+IPMs8Nsx6/FSRWb9RQmzhtyM:MkuMSztfNfmsULxRQmzryM |
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
b8034770d7f487ac |
|
VISUAL
aHash
|
00001fffffffffff |
|
VISUAL
dHash
|
c4f9ff323a161f32 |
|
VISUAL
wHash
|
000003dfdfc3c3ff |
|
VISUAL
colorHash
|
070000001c0 |
|
VISUAL
cropResistant
|
ac8c555355755cda,ff043a38361e3712,4023ccd833703ffe |
Fake Ledger site positioned to capture victims through SEO tactics, typosquatting, or paid advertising. Serves as entry point for multi-stage attacks including credential theft and malware distribution.
Malicious code is obfuscated using 1 techniques to evade detection by security scanners and make reverse engineering more difficult.